CVE-2021-42079 Information

Description

An authenticated administrator is able to prepare an alert that is able to execute an SSRF attack. This is exclusively with POST requests.

Reference

https://www.divd.nl/DIVD-2021-00020 https://www.wbsec.nl/osnexus https://www.osnexus.com/products/software-defined-storage https://csirt.divd.nl/CVE-2021-42079