Dedalus95

**Name of the Vulnerable Software and Affected Versions** Knowage versions prior to 8.1.37 **Description** Knowage is vulnerable to server-side request forgery. The vulnerability allows attackers to send requests to arbitrary hosts/paths. The impact of this vulnerability is limited as attackers cannot read the response, but it could be leveraged to scan the internal network. **Recommendations** Update to version 8.1.37 or later.