Recipes 1.5.10 - Blind SSRF
Summary
| Name | Recipes 1.5.10 - Blind SSRF |
| Code name | |
| Product | Recipes 1.5.10 |
| Affected versions | Version 1.5.10 |
| State | Public |
| Release date | 2024-01-16 |
Vulnerability
| Kind | Server-side request forgery |
| Rule | |
| Remote | Yes |
| CVSSv3.1 Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
| CVSSv3.1 Base Score | 5.3 |
| Exploit available | No |
| CVE ID(s) |
Description
Recipes version 1.5.10 allows arbitrary HTTP requests to be made through the server. This is possible because the application is vulnerable to SSRF.
Vulnerability
A Server-Side Request Forgery (SSRF) vulnerability has been identified in Recipes, which could allow an attacker to make arbitrary HTTP requests through the server.
Evidence of exploitation
Our security policy
We have reserved the ID CVE-2024-0403 to refer to this issue from now on.
System Information
-
Version: Recipes 1.5.10
-
Operating System: MacOS
Mitigation
There is currently no patch available for this vulnerability.
Credits
The vulnerability was discovered by Carlos Bello from Fluid Attacks' Offensive Team.
References
Vendor page https://github.com/TandoorRecipes/recipes/
Timeline
2024-01-10
Vulnerability discovered.
2024-02-10
Vendor contacted.
2024-02-19
Public Disclosure.
