CVE-2024-29319

July 5, 2024, 5:10 p.m.

Tags

cve@mitre.org
2024-07-05
CVE-2024-29319

Product(s) Impacted

Volmarg Personal Management System

  • 1.4.64

Description

Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make unintended HTTP and DNS requests to a server that the attacker controls.

Weaknesses

Date

Published: July 5, 2024, 4:15 p.m.

Last Modified: July 5, 2024, 5:10 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

cve@mitre.org

References

https://github.com/b-hermes/vulnerability-research/tree/main/CVE-2024-29319
cve@mitre.org