CVE-2024-47066

Published: Sep 23, 2024Modified: Sep 30, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Lobe Chat is an open-source artificial intelligence chat framework. Prior to version 1.19.13, server-side request forgery protection implemented in `src/app/api/proxy/route.ts` does not consider redirect and could be bypassed when attacker provides an external malicious URL which redirects to internal resources like a private network or loopback address. Version 1.19.13 contains an improved fix for the issue.

Affected (1)

Products: Lobehub: Lobe Chat

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Lobehub Lobe Chat	Before 1.19.3

Related CWEs

Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

References (4)

https://github.com/lobehub/lobe-chat/blob/main/src/app/api/proxy/route.ts

Source: security-advisories@github.com

Broken Link

https://github.com/lobehub/lobe-chat/commit/e960a23b0c69a5762eb27d776d33dac443058faf

Source: security-advisories@github.com

Patch

https://github.com/lobehub/lobe-chat/security/advisories/GHSA-3fc8-2r3f-8wrg

Source: security-advisories@github.com

ExploitThird Party Advisory

https://github.com/lobehub/lobe-chat/security/advisories/GHSA-mxhq-xw3g-rphc

Source: security-advisories@github.com

Not Applicable

Timeline

No history available yet.