CVE-2024-29029

CVSS V2 None CVSS V3 None

Description

memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /o/get/image that allows unauthenticated users to enumerate the internal network and retrieve images. The response from the image request is then copied into the response of the current server request, causing a reflected XSS vulnerability.

Overview

CVE ID
CVE-2024-29029

Assigner
GitHub_M

Vulnerability Status
PUBLISHED

Published Version
2024-04-19T15:14:09.993Z

Last Modified Date
2024-06-04T17:58:18.206Z

Weakness Enumerations

CWE	URL
CWE-918	http://cwe.mitre.org/data/definitions/918.html
CWE-79	http://cwe.mitre.org/data/definitions/79.html

References

Reference URL	Reference Tags
https://securitylab.github.com/advisories/GHSL-2023-154_GHSL-2023-156_memos/	x_refsource_CONFIRM
https://github.com/usememos/memos/commit/bbd206e8930281eb040cc8c549641455892b9eb5	x_refsource_MISC
https://github.com/usememos/memos/blob/06dbd8731161245444f4b50f4f9ed267f7c3cf63/api/v1/http_getter.go#L29	x_refsource_MISC

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-29029
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29029

History

Created	Old Value	New Value	Data Type	Notes
2024-06-26 02:55:22				Added to TrackCVE