cbcvebase.
CVE-2022-41412
published 2022-11-30

CVE-2022-41412: An issue in the graphData.cgi component of perfSONAR v4.4.5 and prior allows attackers to access sensitive data and execute Server-Side Request Forgery (SSRF)…

PriorityP276high8.6CVSS 3.1
AVNACLPRNUINSCCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
4.09%
89.5th percentile
An issue in the graphData.cgi component of perfSONAR v4.4.5 and prior allows attackers to access sensitive data and execute Server-Side Request Forgery (SSRF) attacks.

Affected

1 ranges
VendorProductVersion rangeFixed in
perfsonarperfsonar>= 4.0 < 4.4.54.4.5

Detection & IOCsextracted from sources · hover to see the quote

urlgraphData.cgi
pathgraphData.cgi
  • Probe for SSRF via the graphData.cgi endpoint by checking for HTTP 200 responses; the nuclei template targets perfSONAR 4.x and uses an Interactsh out-of-band callback to confirm blind SSRF.
  • Detection should focus on outbound HTTP requests originating from the perfSONAR host (graphData.cgi process) to attacker-controlled or internal infrastructure, indicative of SSRF exploitation.
  • ·The nuclei template uses an Interactsh (out-of-band) server for detection, meaning passive/inline detection alone may miss blind SSRF cases; active OOB testing is required for reliable detection.
  • ·Vulnerability affects perfSONAR v4.4.5 and prior; ensure version scoping is applied when deploying detection rules to avoid false positives on patched versions.

CVSS provenance

nvdv3.18.6HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
vulncheck8.6HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.