CVE-2024-5328 — CRITICAL (9.3)

Vulnerability Description

A Server-Side Request Forgery (SSRF) vulnerability exists in the lunary-ai/lunary application, specifically within the endpoint '/auth/saml/tto/download-idp-xml'. The vulnerability arises due to the application's failure to validate user-supplied URLs before using them in server-side requests. An attacker can exploit this vulnerability by sending a specially crafted request to the affected endpoint, allowing them to make unauthorized requests to internal or external resources. This could lead to the disclosure of sensitive information, service disruption, or further attacks against the network infrastructure. The issue affects the latest version of the application as of the report.

CVSS Score

9.3

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Lunary	Lunary	-

Related Weaknesses (CWE)

CWE-918

References

https://huntr.com/bounties/80b09757-d9a0-44d1-932f-2461fc8fec69ExploitIssue TrackingTechnical Description
https://huntr.com/bounties/80b09757-d9a0-44d1-932f-2461fc8fec69ExploitIssue TrackingTechnical Description

FAQ

What is CVE-2024-5328?

CVE-2024-5328 is a vulnerability with a CVSS score of 9.3 (CRITICAL). A Server-Side Request Forgery (SSRF) vulnerability exists in the lunary-ai/lunary application, specifically within the endpoint '/auth/saml/tto/download-idp-xml'. The vulnerability arises due to the a...

How severe is CVE-2024-5328?

CVE-2024-5328 has been rated CRITICAL with a CVSS base score of 9.3/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2024-5328?

Check the references section above for vendor advisories and patch information. Affected products include: Lunary Lunary.