{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T13:25:22.583","vulnerabilities":[{"cve":{"id":"CVE-2023-48379","sourceIdentifier":"twcert@cert.org.tw","published":"2023-12-15T08:15:45.803","lastModified":"2024-11-21T08:31:36.130","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Softnext Mail SQR Expert is an email management platform, it has inadequate filtering for a specific URL parameter within a specific function. An unauthenticated remote attacker can perform Blind SSRF attack to discover internal network topology base on URL error response."},{"lang":"es","value":"Softnext Mail SQR Expert es una plataforma de gestión de correo electrónico, tiene un filtrado inadecuado para un parámetro de URL específico dentro de una función específica. Un atacante remoto no autenticado puede realizar un ataque Blind SSRF para descubrir la topología de la red interna basándose en la respuesta de error de URL."}],"metrics":{"cvssMetricV31":[{"source":"twcert@cert.org.tw","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"twcert@cert.org.tw","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-918"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:softnext:mail_sqr_expert:*:*:*:*:*:*:*:*","versionEndIncluding":"230330","matchCriteriaId":"FDCE076E-BA94-4BFF-8FD9-4E08B4A6392F"}]}]}],"references":[{"url":"https://www.twcert.org.tw/tw/cp-132-7597-fff54-1.html","source":"twcert@cert.org.tw","tags":["Third Party Advisory"]},{"url":"https://www.twcert.org.tw/tw/cp-132-7597-fff54-1.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}