1. SSRF Vulnerability in AI Model Provider Configuration Allowed Internal Network Scanning
A server-side request forgery (SSRF) vulnerability was identified and remediated in AI model endpoints, enabling a tenant administrator to probe internal network services through user-supplied provider URLs. The flaw resided in the configuration interfaces for OpenAI, Azure OpenAI, and Ollama integrations, where the `b...