CVE-2025-52163 Information
Jul 19, 2025
cve
Description
A Server-Side Request Forgery (SSRF) in the component TunnelServlet of agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 allows attackers to forcefully initiate connections to arbitrary internal and external resources via a crafted request. This can lead to sensitive data exposure.
Reference
http://agorum.com https://herolab.usd.de/security-advisories/usd-2025-0025/
Related CNNVD
CNNVD-202507-2384 (Published: 2025-07-18)
Share on: