CVE-2024-56736

CVE-2024-56736: Apache HertzBeat: Server-Side Request Forgery (SSRF) in Api Config Oss

Vendor Apache Software Foundation
Product Apache HertzBeat
Weakness CWE-918 · SSRF
Published April 16, 2025
Last update April 16, 2025
View on NVD All CVEs

CVSS base score

What the vulnerability does

Description

Server-Side Request Forgery (SSRF) vulnerability in Apache HertzBeat. This issue affects Apache HertzBeat (incubating): before 1.7.0. Users are recommended to upgrade to version 1.7.0, which fixes the issue.

Key dates

Disclosure timeline

April 16, 2025 CVE published
April 16, 2025 Record updated