Appsmith v1.7.11 was discovered to allow attackers to execute an authenticated Server-Side Request Forgery (SSRF) via redirecting incoming requests to the AWS internal metadata endpoint.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/appsmithorg/appsmith/pull/15782 |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-03T10:54:02.812Z
Reserved: 2022-08-15T00:00:00
Link: CVE-2022-38298

No data.

Status : Modified
Published: 2022-09-12T22:15:08.650
Modified: 2024-11-21T07:16:12.393
Link: CVE-2022-38298

No data.