CVE-2022-38298 Information

Description

Appsmith v1.7.11 was discovered to allow attackers to execute an authenticated Server-Side Request Forgery (SSRF) via redirecting incoming requests to the AWS internal metadata endpoint.

Reference

https://github.com/appsmithorg/appsmith/pull/15782