CVE-2023-51441 | Apache Axis 1.x Service Admin HTTP API ServiceFactory.java server-side request forgery

A vulnerability classified as critical has been found in Apache Axis 1.x. Affected is an unknown function of the file axis-rt-core/src/main/java/org/apache/axis/client/ServiceFactory.java of the component Service Admin HTTP API. The manipulation leads to server-side request forgery. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is traded as CVE-2023-51441. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-51441 | Apache Axis 1.x Service Admin HTTP API ServiceFactory.java server-side request forgery

Post correlati

CVE-2024-23820 | OpenFGA up to 1.4.2 allocation of resources

CVE-2024-33267 | Hero hfheropayment up to 1.2.5 initContent sql injection

CVE-2024-4919 | Campcodes Online Examination System 1.0 addCourseExe.php course_name sql injection

CVE-2023-47166 | Milesight UR32L 32.3.0.7-r2 luci2-io improper authorization (TALOS-2023-1852)