CVE-2020-16248

Published August 9th, 2020

View on NVD ↗

CVSS v3

5.8

MEDIUM

CVSS v2

MEDIUM

Affected

PROJECT

Description

Prometheus Blackbox Exporter through 0.17.0 allows /probe?target= SSRF. NOTE: follow-on discussion suggests that this might plausibly be interpreted as both intended functionality and also a vulnerability

prometheus/blackbox_exporter

Blackbox prober exporter

GitHub

5.72K