High severity8.1NVD Advisory· Published Jul 19, 2021· Updated Jun 17, 2026
CVE-2021-31216
CVE-2021-31216
Description
Siren Investigate before 11.1.1 contains a server side request forgery (SSRF) defect in the built-in image proxy route (which is enabled by default). An attacker with access to the Investigate installation can specify an arbitrary URL in the parameters of the image proxy route and fetch external URLs as the Investigate process on the host.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Siren/Investigatedescription
- Range: <11.1.1
Patches
Vulnerability mechanics
References
2- docs.siren.io/siren-platform-user-guide/11.1/release-notes.htmlnvdPatchRelease NotesVendor Advisory
- community.siren.io/c/announcementsnvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.