CVE-2021-29357

CVE-2021-29357

EPSS 1.0%

The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://labs.integrity.pt/advisories/cve-2021-29357/https://success.outsystems.com/Support/Security/Vulnerabilities/Vulnerability_RTAF-2226