Описание
WSO2 API Manager vulnerable to SSRF
WSO2 API Manager 3.0.0 does not properly restrict outbound network access from a Publisher node, opening up the possibility of SSRF to this node's entire intranet.
Пакеты
Наименование
org.wso2.am:am-parent
maven
Затронутые версииВерсия исправления
<= 3.0.0
Отсутствует
Связанные уязвимости
CVSS3: 9.8
nvd
больше 5 лет назад
WSO2 API Manager 3.0.0 does not properly restrict outbound network access from a Publisher node, opening up the possibility of SSRF to this node's entire intranet.