Internal IP Disclosure

Description

Kayran has detected an internal IPv4 address in your system.
Internal IP Disclosure means that the product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

These IPv4 addresses could expose information about the IP addressing scheme being used in your internal network.

That could be very dangerous to your business if SSRF(Server-side request forgery), RFI (Remote file inclusion) or LFI (Local file inclusion) are possible.
If possible, more information about the internal network can be obtained by the attacker, making his attacks more dangerous.

Recommendation

To prevent any Internal IP Disclosure, make sure that these IP Addresses are not being displayed to any, unauthorized actors.

References

https://cwe.mitre.org/data/definitions/200.html

< Return to all Vulnerabilities

Servers 101

Let’s have a “quick” Servers 101 Course. Courtesy of Kayran! If you’ve been on the internet for over an hour, you probably already heard of

Read More »

Using VPN

What is a VPN? Why should someone be using VPN? Which Problems does is solve? and what is the advantages and disadvantages of it? Let’s

Read More »