AI Score
Confidence
High
EPSS
Percentile
22.7%
An issue in the Elasticsearch plugin of Appsmith v1.7.11 allows attackers to connect disallowed hosts to the AWS/GCP internal metadata endpoint.
github.com/appsmithorg/appsmith/pull/15834