CVE-2023-50913

Name of the Vulnerable Software and Affected Versions Oxide control plane software versions prior to 5

Description The issue allows Server-Side Request Forgery (SSRF), which is a type of attack where an attacker can trick a server into making requests to internal or external systems. This can potentially lead to unauthorized access to sensitive data or systems.

Recommendations For versions prior to 5, update to version 5 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive internal systems to minimize the risk of exploitation.