Unknown · Rava Certificate Validation System · CVE-2022-39055
**Name of the Vulnerable Software and Affected Versions**
RAVA certificate validation system (affected versions not specified)
**Description**
The RAVA certificate validation system has inadequate filtering for the `URL parameter`, allowing an unauthenticated remote attacker to perform a Server-Side Request Forgery (SSRF) attack. This can enable the attacker to discover the internal network topology based on the query response.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.