CVE-2024-4894

Name of the Vulnerable Software and Affected Versions ITPison OMICARD EDM (affected versions not specified)

Description The issue allows unauthenticated remote attackers to modify specific URL parameters, enabling them to conduct Server-Side Request Forgery (SSRF) attacks. This allows attackers to probe internal network information. No estimated number of potentially affected devices or real-world incidents are mentioned.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.