PT-2020-17487 · Agentejo+1 · Cockpit+1

Passtheticket

Published

2020-12-30

Updated

2025-12-26

CVE-2020-35850

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cockpit version 234

Description A Server-Side Request Forgery (SSRF) issue was discovered. The vendor has stated that they do not think it is a big real-life issue. This issue is unrelated to the Agentejo Cockpit product.

Recommendations For version 234, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-918

Related Identifiers

BDU:2026-00316

CVE-2020-35850

OESA-2024-1552

OESA-2024-1660

OESA-2024-1661

Affected Products

Cockpit

Red Os

PT-2020-17487 · Agentejo+1 · Cockpit+1

CVE-2020-35850

Weakness Enumeration

Related Identifiers

Affected Products

References · 20