CVE-2022-42149: SSRF
First published: Mon Oct 17 2022(Updated: )
kkFileView 4.0 is vulnerable to Server-side request forgery (SSRF) via controller\OnlinePreviewController.java.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| kkFileView | =4.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-42149?
CVE-2022-42149 is a vulnerability in kkFileView 4.0 that allows for Server-side request forgery (SSRF) attacks.
What is the severity level of CVE-2022-42149?
CVE-2022-42149 severity level is critical with a score of 9.8.
How does CVE-2022-42149 impact kkFileView 4.0?
CVE-2022-42149 allows attackers to perform Server-side request forgery (SSRF) attacks in kkFileView 4.0.
Is there a fix available for CVE-2022-42149?
A fix for CVE-2022-42149 is not available at the moment. It is recommended to follow the vendor's advisory for any updates or patches.
Where can I find more information about CVE-2022-42149?
You can find more information about CVE-2022-42149 at the following link: https://github.com/xiaojiangxl/paper/blob/main/kkFileView/ssrf_vul_en.md
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/keking
- canonical/kkfileview
- version/kkfileview/4.0.0