Vulnerabilities > Server-Side Request Forgery (SSRF)

DATE	CVE	VULNERABILITY TITLE	RISK
2021-12-14	CVE-2021-34425	Server-Side Request Forgery (SSRF) vulnerability in Zoom Meetings The Zoom Client for Meetings before version 5.7.3 (for Android, iOS, Linux, macOS, and Windows) contain a server side request forgery vulnerability in the chat\'s "link preview" functionality. network low complexity zoom CWE-918	6.1
2021-12-13	CVE-2021-39057	Server-Side Request Forgery (SSRF) vulnerability in IBM Spectrum Protect Plus IBM Spectrum Protect Plus 10.1.0.0 through 10.1.8.x is vulnerable to server-side request forgery (SSRF). network low complexity ibm CWE-918	8.1
2021-12-13	CVE-2021-39935	Server-Side Request Forgery (SSRF) vulnerability in Gitlab An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.5 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2. network low complexity gitlab CWE-918	7.5
2021-12-07	CVE-2021-37940	Server-Side Request Forgery (SSRF) vulnerability in Elastic Enterprise Search An information disclosure via GET request server-side request forgery vulnerability was discovered with the Workplace Search Github Enterprise Server integration. network low complexity elastic CWE-918	6.8
2021-12-06	CVE-2021-40091	Server-Side Request Forgery (SSRF) vulnerability in Squaredup 4.6/5.2.1.6654 An SSRF issue was discovered in SquaredUp for SCOM 5.2.1.6654. network low complexity squaredup CWE-918 critical	9.8
2021-12-01	CVE-2021-29863	Server-Side Request Forgery (SSRF) vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.3 and 7.4 is vulnerable to server side request forgery (SSRF). network low complexity ibm CWE-918	4.3
2021-12-01	CVE-2021-40809	Server-Side Request Forgery (SSRF) vulnerability in Jamf An issue was discovered in Jamf Pro before 10.32.0, aka PI-009921. network low complexity jamf CWE-918	8.8
2021-11-30	CVE-2021-43296	Server-Side Request Forgery (SSRF) vulnerability in Zohocorp Manageengine Supportcenter Plus 11.0 Zoho ManageEngine SupportCenter Plus before 11016 is vulnerable to an SSRF attack in ActionExecutor. network low complexity zohocorp CWE-918	7.5
2021-11-24	CVE-2021-22049	Server-Side Request Forgery (SSRF) vulnerability in VMWare Vcenter Server 6.5/6.7/7.0 The vSphere Web Client (FLEX/Flash) contains an SSRF (Server Side Request Forgery) vulnerability in the vSAN Web Client (vSAN UI) plug-in. network low complexity vmware CWE-918 critical	9.8
2021-11-24	CVE-2021-3552	Server-Side Request Forgery (SSRF) vulnerability in Bitdefender Endpoint Security Tools and Gravityzone A Server-Side Request Forgery (SSRF) vulnerability in the EPPUpdateService component of Bitdefender Endpoint Security Tools allows an attacker to proxy requests to the relay server. network low complexity bitdefender CWE-918	7.5