CVE-2022-0766 – calibreweb

Package

Manager: pip
Name: calibreweb
Vulnerable Version: >=0 <0.6.17

Severity

Level: Critical

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

EPSS: 0.00288 pctl0.51861

Details

Server-Side Request Forgery in calibreweb calibreweb prior to version 0.6.17 is vulnerable to server-side request forgery (SSRF). This is due to an incomplete fix for [CVE-2022-0339](https://github.com/advisories/GHSA-4w8p-x6g8-fv64). The blacklist does not check for `0.0.0.0`, which would result in a payload of `0.0.0.0` resolving to `localhost`.

Metadata

Created: 2022-03-08T00:00:31Z
Modified: 2022-03-18T21:20:46Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/03/GHSA-2647-c639-qv2j/GHSA-2647-c639-qv2j.json
CWE IDs: ["CWE-918"]
Alternative ID: GHSA-2647-c639-qv2j
Finding: F100
Auto approve: 1