CVE-2022-41412

HIGH EXPLOITED NUCLEI

perfsonar < 4.4.5 - Server-Side Request Forgery via graphData.cgi

Title source: llm

Exploitation Summary

CVE-2022-41412 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including renmizo. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository provides a detailed writeup and proof-of-concept examples for CVE-2022-41412, an open proxy relay vulnerability in perfSONAR's graphData.cgi script. It demonstrates how unauthenticated users can proxy HTTP/HTTPS traffic through the server, potentially exfiltrating data from internal web servers.

Description

An issue in the graphData.cgi component of perfSONAR v4.4.5 and prior allows attackers to access sensitive data and execute Server-Side Request Forgery (SSRF) attacks.

Exploits (1)

nomisec WRITEUP 1 stars

by renmizo · client-side

https://github.com/renmizo/CVE-2022-41412

View Code ZIP pw:eip

The repository provides a detailed writeup and proof-of-concept examples for CVE-2022-41412, an open proxy relay vulnerability in perfSONAR's graphData.cgi script. It demonstrates how unauthenticated users can proxy HTTP/HTTPS traffic through the server, potentially exfiltrating data from internal web servers.

Classification

Writeup 100%

Attack Type

Ssrf

Complexity

Trivial

Reliability

Reliable

Target: perfSONAR v4.x <= v4.4.4

No auth needed

Prerequisites: Access to the perfSONAR server's graphData.cgi endpoint

MITRE ATT&CK

T1090 - Proxy

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

perfSONAR 4.x <= 4.4.4 - Server-Side Request Forgery

HIGHVERIFIEDby null_hypothesis

FOFA: title="perfSONAR Toolkit" || title="perfsonar toolkit"

References (2)

Core 2

Core References

Third Party Advisory

http://packetstormsecurity.com/files/170069/perfSONAR-4.4.4-Open-Proxy-Relay.html

Third Party Advisory

https://github.com/renmizo/CVE-2022-41412

Scores

CVSS v3 8.6

EPSS 0.0409

EPSS Percentile 89.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

VulnCheck KEV 2025-03-17

CWE

CWE-918

Status published

Products (1)

perfsonar/perfsonar 4.0 - 4.4.5

Published Nov 30, 2022

Tracked Since Feb 18, 2026