VDB

CVE-2024-21527

CVE-2024-21527 PUBLISHED CVSS 8.199999809265137 HIGH

Versions of the package github.com/gotenberg/gotenberg/v8/pkg/gotenberg before 8.1.0; versions of the package github.com/gotenberg/gotenberg/v8/pkg/modules/chromium before 8.1.0; versions of the package github.com/gotenberg/gotenberg/v8/pkg/modules/webhook before 8.1.0 are vulnerable to Server-side Request Forgery (SSRF) via the /convert/html endpoint when a request is made to a file via localhost, such as <iframe src="\\localhost/etc/passwd">. By exploiting this vulnerability, an attacker can achieve local file inclusion, allowing of sensitive files read on the host system. Workaround An alternative is using either or both --chromium-deny-list and --chromium-allow-list flags.

EPSS 0.12% · 30.9th percentile

Risk Scores

CVSS 3.1
8.199999809265137
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N/E:P
EPSS Score
0.12%
30.9th percentile

Affected Products

VendorProductVersions
n/agithub.com/gotenberg/gotenberg/v8/pkg/modules/chromium0, 0
gotenberggotenberg0, 0
n/agithub.com/gotenberg/gotenberg/v8/pkg/modules/webhook0, 0
n/agithub.com/gotenberg/gotenberg/v8/pkg/gotenberg0, 0

Timeline

  • Jan 20, 1970 GitHub Gist PoC
  • Jul 19, 2024 EPSS Score
  • Jul 19, 2024 CVE Published
  • Jul 19, 2024 PoC Published
  • Aug 10, 2024 EPSS Score
  • Aug 31, 2024 EPSS Score
  • Sep 22, 2024 EPSS Score
  • Oct 4, 2024 Coalition ESS Score
  • Oct 14, 2024 EPSS Score
  • Nov 4, 2024 EPSS Score
  • Nov 26, 2024 EPSS Score
  • Dec 19, 2024 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›