Alexandre Basquin

**Name of the Vulnerable Software and Affected Versions** TheHive Project UnshortenLink analyzer versions prior to 1.1 Cortex-Analyzers versions prior to 1.15.2 **Description** The issue allows for Server-Side Request Forgery (SSRF) attacks. An attacker can exploit this by creating a new analysis, selecting URL for Data Type, and providing an SSRF payload in the `Data` parameter, such as "http://127.0.0.1:22". The result of the attack can be seen in the main dashboard, enabling potential port scans on localhost and intranet hosts. **Recommendations** For TheHive Project UnshortenLink analyzer versions prior to 1.1, update to version 1.1 or later. For Cortex-Analyzers versions prior to 1.15.2, update to version 1.15.2 or later.