Vulnerability Description
Havoc Research discovered an authenticated Server-Side Request Forgery (SSRF) via the "JSON" data source of Redash open-source 8.0.0 and prior. Possibly, other connectors are affected. The SSRF is potent and provides a lot of flexibility in terms of being able to craft HTTP requests e.g., by adding headers, selecting any HTTP verb, etc.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redash | Redash | <= 8.0.0 |
Related Weaknesses (CWE)
References
- https://blog.redash.ioVendor Advisory
- https://github.com/getredash/redash/commits/masterPatchVendor Advisory
- https://github.com/getredash/redash/issues/4869ExploitVendor Advisory
- https://blog.redash.ioVendor Advisory
- https://github.com/getredash/redash/commits/masterPatchVendor Advisory
- https://github.com/getredash/redash/issues/4869ExploitVendor Advisory
FAQ
What is CVE-2020-12725?
CVE-2020-12725 is a vulnerability with a CVSS score of 7.2 (HIGH). Havoc Research discovered an authenticated Server-Side Request Forgery (SSRF) via the "JSON" data source of Redash open-source 8.0.0 and prior. Possibly, other connectors are affected. The SSRF is pot...
How severe is CVE-2020-12725?
CVE-2020-12725 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-12725?
Check the references section above for vendor advisories and patch information. Affected products include: Redash Redash.