cvedb.io
CVE-2017-6201
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2018-02-06T16:29:00.887 · Last modified 2026-06-17T01:21:56.313

Summary

A Server Side Request Forgery vulnerability exists in the install app process in Sandstorm before build 0.203. A remote attacker may exploit this issue by providing a URL. It could bypass access control such as firewalls that prevent the attackers from accessing the URLs directly.

Affected products

sandstorm — sandstorm

Does this affect you?

Add your gear to cvedb and we'll alert you only when sandstorm ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.