CVE-2024-50811

hopetree izone lts c011b48 contains a server-side request forgery (SSRF) vulnerability in the active push function as \\apps\\tool\\apis\\bd_push.py does not securely filter user input through push_urls() and get_urls(). > MITRE Terms of Use apply – see LICENSE‑MITRE.txt