Description

IBM Jazz Team Server products is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.

Remediation

References

CVE-2021-29844

Related Vulnerabilities

Drupal Core 7.x Multiple Cross-Site Scripting Vulnerabilities (7.0 - 7.85)

WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.5.8.0)

PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-4850)

Envoy Proxy Improper Certificate Validation Vulnerability (CVE-2022-21654)

WordPress Plugin Product Catalog Unspecified Vulnerability (3.1.3)

Severity

High

Classification

CVE-2021-29844 CWE-918 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities