← volver
CVE-2021-22255

CVE-2021-22255

CVSS 7.7 HIGHEPSS 1.3%
SSRF in URL file upload in Baserow <1.1.0 allows remote authenticated users to retrieve files from the internal server network exposed over HTTP by inserting an internal address.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Productos afectados
Baserow B.V. · Baserow

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://baserow.io/blog/march-2021-release-of-baserowhttps://gitlab.com/bramw/baserow/-/issues/370https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22255.json