What the vulnerability does
01Description
AppSmith Community 1.8.3 before 1.46 allows SSRF via New DataSource for application/json requests to 169.254.169.254 to retrieve AWS metadata credentials.
CVSS base score
CVSS vector
CVSS:3.1/AC:H/AV:N/A:H/C:H/I:H/PR:L/S:C/UI:N
What the vulnerability does
AppSmith Community 1.8.3 before 1.46 allows SSRF via New DataSource for application/json requests to 169.254.169.254 to retrieve AWS metadata credentials.
Key dates
External resources