Vulnerability in Infoware Mapsuite

CVE-2014-2233

Server-side request forgery (SSRF) vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to trigger requests to intranet servers via unspecified vectors.

EPSS: 0.004 (62.5th percentile) — read the EPSS interpretation.

Affected products

Infoware Mapsuite — versions 1.0.35, 1.1.48
N/a — versions n/a

References

cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC, Vendor Advisory)
cve@mitre.org (x_refsource_MISC, Vendor Advisory)