CVE-2021-29357

CVE-2021-29357

EPSS 1.0%

The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://labs.integrity.pt/advisories/cve-2021-29357/https://success.outsystems.com/Support/Security/Vulnerabilities/Vulnerability_RTAF-2226