VDB
CVE-2025-24354
CVE-2025-24354
PUBLISHED
CVSS 5.300000190734863 MEDIUM
imgproxy is vulnerable to SSRF against 0.0.0.0
EPSS 2.22% · 84.8th percentile
Risk Scores
CVSS v3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
2.22%
84.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| imgproxy | imgproxy | < 3.27.2, < 3.27.2 |
| github.com | imgproxy/imgproxy | 0, 0 |
Timeline
- Jan 21, 1970 VulnCheck XDB Entry
- Jan 21, 1970 Security Advisory
- Mar 8, 2022 CrowdSec Sighting
- Mar 9, 2022 CrowdSec Sighting
- Dec 18, 2022 CrowdSec Sighting
- Nov 23, 2023 CrowdSec Sighting
- Jan 27, 2025 CVE Published
- Jan 27, 2025 PoC Published
- Jan 27, 2025 PoC Published
- Jan 28, 2025 EPSS Score
- Feb 12, 2025 EPSS Score
- Feb 27, 2025 EPSS Score