VYPR

Maven package

com.netflix.spinnaker.orca/orca-core

pkg:maven/com.netflix.spinnaker.orca/orca-core

Vulnerabilities (1)

  • CVE-2020-9298Aug 28, 2020
    affected < 8.7.0fixed 8.7.0

    The Spinnaker template resolution functionality is vulnerable to Server-Side Request Forgery (SSRF), which allows an attacker to send requests on behalf of Spinnaker potentially leading to sensitive data disclosure.