CVE-2024-21527 — Vulnetix

Try Vulnetix Request Demo

CVE-2024-21527 PUBLISHED CVSS 8.199999809265137 HIGH

Versions of the package github.com/gotenberg/gotenberg/v8/pkg/gotenberg before 8.1.0; versions of the package github.com/gotenberg/gotenberg/v8/pkg/modules/chromium before 8.1.0; versions of the package github.com/gotenberg/gotenberg/v8/pkg/modules/webhook before 8.1.0 are vulnerable to Server-side Request Forgery (SSRF) via the /convert/html endpoint when a request is made to a file via localhost, such as <iframe src="\\localhost/etc/passwd">. By exploiting this vulnerability, an attacker can achieve local file inclusion, allowing of sensitive files read on the host system. Workaround An alternative is using either or both --chromium-deny-list and --chromium-allow-list flags.

EPSS 0.12% · 31.2th percentile

Risk Scores

CVSS v3.1

8.199999809265137

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N/E:P

EPSS Score

0.12%

31.2th percentile

Affected Products

Vendor	Product	Versions
n/a	github.com/gotenberg/gotenberg/v8/pkg/modules/chromium	0
gotenberg	gotenberg	0
n/a	github.com/gotenberg/gotenberg/v8/pkg/modules/webhook	0
n/a	github.com/gotenberg/gotenberg/v8/pkg/gotenberg	0

Timeline

Jan 20, 1970 GitHub Gist PoC
Jul 19, 2024 EPSS Score
Jul 19, 2024 CVE Published
Aug 9, 2024 EPSS Score
Aug 30, 2024 EPSS Score
Sep 5, 2024 CVE Updated
Sep 20, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score
Oct 12, 2024 EPSS Score
Nov 2, 2024 EPSS Score
Nov 23, 2024 EPSS Score
Dec 15, 2024 EPSS Score

References

Open in Interactive Console →