CVE-2021-29357

CVE-2021-29357

EPSS 1.0%

The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://labs.integrity.pt/advisories/cve-2021-29357/https://success.outsystems.com/Support/Security/Vulnerabilities/Vulnerability_RTAF-2226