Home

Description

A Server-Side Request Forgery (SSRF) in the UISP Application may allow a malicious actor with certain permissions to make requests outside of UISP Application scope.

PUBLISHED Reserved 2025-02-20 | Published 2025-08-21 | Updated 2025-08-21 | Assigner hackerone

Product status

Default status
unaffected

2.4.220 before 2.4.220
affected

References

community.ui.com/...220/b428b276-c4a6-4b90-b97b-1860ff2bb46d

cve.org (CVE-2025-27217)

nvd.nist.gov (CVE-2025-27217)

Download JSON