Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Cloud metadata publicly exposed - Vulnerability Database

Cloud metadata publicly exposed

Description

A reverse proxy uses the values of an HTTP request to route the request. Due to the proxy's insecure configuration, it leads to SSRF vulnerability. SSRF as in Server Side Request Forgery is a vulnerability that allows an attacker to force a server into sending requests to arbitrary hosts, including cloud metadata endpoints.

Remediation

Restrict the reverse proxy to route to arbitrary hosts

References

What is Server Side Request Forgery (SSRF)?
Trust No One: The Perils of Trusting User Input

Related Vulnerabilities

VMware vCenter vcavbootstrap Arbitrary File Read High
Common tags: SSRF Information Disclosure
Trace.axd Detected High
Common tags: Information Disclosure
WordPress Plugin wp-FileManager Arbitrary File Disclosure (1.3.0) High
Common tags: Information Disclosure
WordPress Plugin W3 Total Cache Information Disclosure (0.9.2.4) High
Common tags: Information Disclosure
WordPress Plugin Duplicator-WordPress Migration Arbitrary File Disclosure (0.3.0) High
Common tags: Information Disclosure

Severity

High

Classification

CWE-918
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

SSRF
Information Disclosure