Vulnerabilities (CVE)

Filtered by vendor Spinnaker Subscribe
Filtered by product Orca
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-9298 1 Spinnaker 1 Orca 2024-11-21 5.0 MEDIUM 7.5 HIGH
The Spinnaker template resolution functionality is vulnerable to Server-Side Request Forgery (SSRF), which allows an attacker to send requests on behalf of Spinnaker potentially leading to sensitive data disclosure.