CVE-2024-51981 – Apache SOAP SSRF/HTTP Request Smuggling

June 25, 2025

CVE ID : CVE-2024-51981

Published : June 25, 2025, 8:15 a.m. | 2 hours, 42 minutes ago

Description : An unauthenticated attacker may perform a blind server side request forgery (SSRF), due to a CLRF injection issue that can be leveraged to perform HTTP request smuggling. This SSRF leverages the WS-Addressing feature used during a WS-Eventing subscription SOAP operation. The attacker can control all the HTTP data sent in the SSRF connection, but the attacker can not receive any data back from this connection.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-51982 – HP Printer PJL Variable FORMLINES Denial of Service

Next Article CVE-2024-51980 – Apache HTTP Server SSRF Vulnerability

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Vite 7.0 Is Out

Vite 7.0 Is Out

Exploring JavaScript ES2025 Edition

Mastering Mixed DML Operations in Apex

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

CVE-2024-51981 – Apache SOAP SSRF/HTTP Request Smuggling

CVE-2025-43880 – GROWI Regular Expression Denial of Service (DoS)

CVE-2024-51977 – HP Printer Information Disclosure

Google’s NotebookLM can gather your research sources for you now – and it’s free

Perficient’s “What If? So What?” Podcast Wins Gold at the 2025 Hermes Creative Awards

A New Citibank Report/Guide Shares How Agentic AI Will Reshape Finance with Autonomous Analysis and Intelligent Automation

How Google’s AI combats new scam tactics – and how you can stay one step ahead

The AI Fix #46: AI can read minds now, and is your co-host a clone?

CVE-2025-20216 – Cisco Catalyst SD-WAN Manager Cross-Site Scripting (XSS)

Extend large language models powered by Amazon SageMaker AI using Model Context Protocol

Apple Intelligence delay: A clash of two architectures and trivial AI features fell short of standards and expectations

CVE-2024-51981 – Apache SOAP SSRF/HTTP Request Smuggling

Related Posts