CVE-2024-21527

CVSS V2 None CVSS V3 None

Description

Versions of the package github.com/gotenberg/gotenberg/v8/pkg/gotenberg before 8.1.0; versions of the package github.com/gotenberg/gotenberg/v8/pkg/modules/chromium before 8.1.0; versions of the package github.com/gotenberg/gotenberg/v8/pkg/modules/webhook before 8.1.0 are vulnerable to Server-side Request Forgery (SSRF) via the /convert/html endpoint when a request is made to a file via localhost, such as <iframe src="\\localhost/etc/passwd">. By exploiting this vulnerability, an attacker can achieve local file inclusion, allowing of sensitive files read on the host system. Workaround An alternative is using either or both --chromium-deny-list and --chromium-allow-list flags.

Overview

CVE ID
CVE-2024-21527

Assigner
snyk

Vulnerability Status
PUBLISHED

Published Version
2024-07-19T05:00:04.457Z

Last Modified Date
2024-07-19T05:00:04.457Z

Weakness Enumerations

CWE	URL
CWE-918	http://cwe.mitre.org/data/definitions/918.html

References

Reference URL	Reference Tags
https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGOTENBERGGOTENBERGV8PKGGOTENBERG-7537081
https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGOTENBERGGOTENBERGV8PKGMODULESCHROMIUM-7537082
https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGOTENBERGGOTENBERGV8PKGMODULESWEBHOOK-7537083
https://github.com/gotenberg/gotenberg/releases/tag/v8.1.0
https://github.com/gotenberg/gotenberg/commit/ad152e62e5124b673099a9103eb6e7f933771794
https://gist.github.com/filipochnik/bc88a3d1cc17c07cec391ee98e1e6356

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-21527
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21527

History

Created	Old Value	New Value	Data Type	Notes
2024-07-19 13:10:41				Added to TrackCVE