CVE-2022-25801: SSRF
First published: Thu Jul 14 2022(Updated: )
Best Practical RT for Incident Response (RTIR) before 4.0.3 and 5.x before 5.0.3 allows SSRF via Scripted Action tools.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Bestpractical Request Tracker For Incident Response | <4.0.3 | |
| Bestpractical Request Tracker For Incident Response | >=5.0.0<5.0.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2022-25801.
What is the title of the vulnerability?
The title of the vulnerability is 'Best Practical RT for Incident Response (RTIR) before 4.0.3 and 5.x before 5.0.3 allows SSRF via Scripted Action tools.'
What is the severity of CVE-2022-25801?
The severity of CVE-2022-25801 is critical with a CVSS score of 9.1.
What software is affected by CVE-2022-25801?
Best Practical RT for Incident Response (RTIR) versions before 4.0.3 and 5.x before 5.0.3 are affected.
How can I fix CVE-2022-25801?
Update Best Practical RT for Incident Response (RTIR) to version 4.0.3 or 5.0.3.
- collector/nvd-index
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/first-publish-date
- agent/tags
- agent/event
- agent/source
- vendor/bestpractical
- canonical/bestpractical request tracker for incident response
- version/bestpractical request tracker for incident response/5.0.0