Skip to content

42Gears Security and Compliance Standards

Advisory ID: 42G-2018-004

Shortened Description: An SSRF issue was discovered in 42Gears SureMDM before 2018-11-27 via the /api/DownloadUrlResponse.ashx "url" parameter.

Explanation:

Severity (CVSSv3 Range): 7.3

Issue date: 02/04/2019

Updated on: 03/23/2021

CVE(s): CVE-2018-15657

An SSRF issue was discovered in 42Gears SureMDM before 2018-11-27 via the /api/DownloadUrlResponse.ashx "url" parameter.

Reference:

https://www.cve.org/CVERecord?id=CVE-2018-15657

https://nvd.nist.gov/vuln/detail/CVE-2018-15657