CVE-2022-35583

Published: Aug 22, 2022Modified: Mar 18, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

wkhtmlTOpdf 0.12.6 is vulnerable to SSRF which allows an attacker to get initial access into the target's system by injecting iframe tag with initial asset IP address on it's source. This allows the attacker to takeover the whole infrastructure by accessing their internal assets.

Affected (1)

Products: Wkhtmltopdf: Wkhtmltopdf

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Wkhtmltopdf Wkhtmltopdf	Version 0.12.6

Related CWEs

Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

References (8)

http://packetstormsecurity.com/files/171446/wkhtmltopdf-0.12.6-Server-Side-Request-Forgery.html

Source: cve@mitre.org

Exploit

https://cyber-guy.gitbook.io/cyber-guys-blog/blogs/initial-access-via-pdf-file-silently

Source: cve@mitre.org

URL Repurposed

https://drive.google.com/file/d/1LAmf_6CJLk5qDp0an2s_gVQ0TN2wmht5/view?usp=sharing

Source: cve@mitre.org

ExploitThird Party Advisory

https://wkhtmltopdf.org/

Source: cve@mitre.org

ProductVendor Advisory

http://packetstormsecurity.com/files/171446/wkhtmltopdf-0.12.6-Server-Side-Request-Forgery.html

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

https://cyber-guy.gitbook.io/cyber-guys-blog/blogs/initial-access-via-pdf-file-silently

Source: af854a3a-2127-422b-91ae-364da2661108

URL Repurposed

https://drive.google.com/file/d/1LAmf_6CJLk5qDp0an2s_gVQ0TN2wmht5/view?usp=sharing

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://wkhtmltopdf.org/

Source: af854a3a-2127-422b-91ae-364da2661108

ProductVendor Advisory

Timeline

No history available yet.