CVE-2025-52196

Description

Server-Side Request Forgery (SSRF) vulnerability in Ctera Portal 8.1.x (8.1.1417.24) allows remote attackers to induce the server to make arbitrary HTTP requests via a crafted HTML file containing an iframe.

PUBLISHED Reserved 2025-06-16 | Published 2025-12-16 | Updated 2025-12-17 | Assigner mitre

References

kb.ctera.com/docs/81x-portal

gist.github.com/simonecris/99baeb07fe6e1803d461e44031819cd3

cve.org (CVE-2025-52196)

nvd.nist.gov (CVE-2025-52196)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.