CVE-2017-6201

Name of the Vulnerable Software and Affected Versions Sandstorm versions prior to build 0.203

Description A Server Side Request Forgery issue exists in the install app process. A remote attacker may exploit this by providing a URL, potentially bypassing access control such as firewalls that prevent direct access to the URLs.

Recommendations For versions prior to build 0.203, update to build 0.203 or later to resolve the issue. As a temporary workaround, consider restricting access to the install app process to minimize the risk of exploitation.