Published: 21/08/2020 Updated: 26/08/2020
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 5.8 | Impact Score: 1.4 | Exploitability Score: 3.9
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Summary

Server-Side Request Forgery in Canvas LMS 2020-07-29 allows a remote, unauthenticated malicious user to cause the Canvas application to perform HTTP GET requests to arbitrary domains.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

instructure canvas learning management service 2020-07-29