QwikSec

Security Database

CVE

CWE

Training

CVE-2017-18638

Published: Oct 11, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

send_email in graphite-web/webapp/graphite/composer/views.py in Graphite through 1.1.5 is vulnerable to SSRF. The vulnerable SSRF endpoint can be used by an attacker to have the Graphite web server request any resource. The response to this SSRF request is encoded into an image file and then sent to an e-mail address that can be supplied by the attacker. Thus, an attacker can exfiltrate any information.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/graphite-project/graphite-web/security/advisories/GHSA-vfj6-275q-4pvm

x_refsource_MISC

https://github.com/graphite-project/graphite-web/issues/2008

x_refsource_MISC

https://blog.orange.tw/2017/07/how-i-chained-4-vulnerabilities-on.html#second-bug-internal-graphite-ssrf

x_refsource_MISC

https://www.youtube.com/watch?v=ds4Gp4xoaeA

x_refsource_MISC

https://github.com/graphite-project/graphite-web/pull/2499

x_refsource_MISC

[debian-lts-announce] 20191021 [SECURITY] [DLA 1962-1] graphite-web security update

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.