How severe is CVE-2024-8955?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.8 out of 10.

What type of vulnerability is CVE-2024-8955?

This is classified as CWE-643, which is a common weakness in software security.

CVE-2024-8955

MEDIUM Year: 2024

CVSS v3 Score

6.8

Medium

Weakness Type

CWE-643

View all →

Vulnerability Description

A Server-Side Request Forgery (SSRF) vulnerability exists in composiohq/composio version v0.4.4. This vulnerability allows an attacker to read the contents of any file in the system by exploiting the BROWSERTOOL_GOTO_PAGE and BROWSERTOOL_GET_PAGE_DETAILS actions.

CVE-2023-24922

MEDIUM

CVSS:6.5(Medium)

Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

CWE-6432023

CVE-2023-36429

MEDIUM

CVSS:6.5(Medium)

Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

CWE-6432023

CVE-2023-36433

MEDIUM

CVSS:6.5(Medium)

Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

CWE-6432023

CVE-2020-25162

HIGH

CVSS:7.5(High)

A XPath injection vulnerability in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 allows unauthenticated remote attackers to acces...

CWE-6432020

CVE-2024-2645

MEDIUM

CVSS:5.3(Medium)

A vulnerability classified as problematic has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /vpnweb/resetpwd/resetpwd.php. The manipulation ...

CWE-6432024

CVE-2024-2648

MEDIUM

CVSS:5.3(Medium)

A vulnerability, which was classified as problematic, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /nac/naccheck.php. The manipulation of...

CWE-6432024

CVE-2024-8955

Vulnerability Description

Related Vulnerabilities

CVE-2023-24922

CVE-2023-36429

CVE-2023-36433

CVE-2020-25162

CVE-2024-2645

CVE-2024-2648