Veracode Vulnerability DatabaseVERACODE:43956Server-Side Request Forgery (SSRF)
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.7%
github.com/artifacthub/hub is vulnerable to Server-Side Request Forgery (SSRF). The vulnerability exists because the authz.go does not disable unsafe rego built-ins by default. This allows an attacker to make malicious HTTP requests, which can be exploited to send requests to internal resources and forward the responses to an external entity.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/artifacthub/hub | le | v1.15.0 | |
| github.com/artifacthub/hub | le | v1.15.0 |
References
artifacthub.io/packages/helm/artifact-hub/artifact-hub?modal=changelog&version=1.16.0
github.com/artifacthub/hub/commit/9df01f90f59e998d93d0b613d8b82c6c003ba2c2
github.com/artifacthub/hub/pull/3344
github.com/artifacthub/hub/security/advisories/GHSA-9pc8-m4vp-ggvf
www.openpolicyagent.org/
www.openpolicyagent.org/docs/latest/#rego
Related
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.7%