CVE-2021-29416

Publication date

2021-03-29 17:51:15

Family

mitre

State

PUBLISHED

Description

An issue was discovered in PortSwigger Burp Suite before 2021.2. During viewing of a malicious request, it can be manipulated into issuing a request that does not respect its upstream proxy configuration. This could leak NetNTLM hashes on Windows systems that fail to block outbound SMB.