Description

Nepxion Discovery is a solution for Spring Cloud. Discovery is vulnerable to a potential Server-Side Request Forgery (SSRF). RouterResourceImpl uses RestTemplate’s getForEntity to retrieve the contents of a URL containing user-controlled input, potentially resulting in Information Disclosure. There is no patch available for this issue at time of publication. There are no known workarounds.

Remediation

References

https://securitylab.github.com/advisories/GHSL-2022-033_GHSL-2022-034_Discovery/

Related Vulnerabilities

CVE-2021-45851 Vulnerability in npm package @frangoteam/fuxa

CVE-2017-12620 Vulnerability in maven package org.apache.opennlp:opennlp-tools

CVE-2022-31690 Vulnerability in maven package org.springframework.security:spring-security-oauth2-client

CVE-2020-7679 Vulnerability in maven package org.webjars.bower:casperjs

CVE-2023-29518 Vulnerability in maven package org.xwiki.platform:xwiki-platform-invitation-ui

Severity

High

Classification

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Exploit Third Party Advisory NVD-CWE-noinfo