CVE-2017-18638
graphite-web - security update
7.5
HIGH
CVSS 3.1
EPSS 91.6%
Description
send_email in graphite-web/webapp/graphite/composer/views.py in Graphite through 1.1.5 is vulnerable to SSRF. The vulnerable SSRF endpoint can be used by an attacker to have the Graphite web server request any resource. The response to this SSRF request is encoded into an image file and then sent to an e-mail address that can be supplied by the attacker. Thus, an attacker can exfiltrate any information.
How to fix CVE-2017-18638
To remediate CVE-2017-18638, upgrade the affected package to a fixed version below.
- —upgrade to 1.1.4-5 or later
- —upgrade to 0.9.12+debian-6+deb8u1 or later
- —upgrade to 1.1.6 or later
- —upgrade to 1.1.6 or later
Is CVE-2017-18638 being exploited?
Likely — EPSS is 91.6%, placing CVE-2017-18638 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.
Affected packages (4)
- from 0, < 1.1.4-5
- from 0, < 0.9.12+debian-6+deb8u1
- from 0, < 1.1.6
- from 0, < 1.1.6
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |