Zyufoye

**Name of the Vulnerable Software and Affected Versions** Apache HertzBeat versions prior to 1.7.0 **Description** The issue is a Server-Side Request Forgery (SSRF) vulnerability. It affects the Api Config Oss. Users are recommended to upgrade to version 1.7.0 to fix the issue. **Recommendations** For versions prior to 1.7.0, upgrade to version 1.7.0 to resolve the issue. As a temporary workaround, consider restricting access to the Api Config Oss to minimize the risk of exploitation.