CRITICAL🇵🇱 Wersja polska

CVE-2025-22952

CVSS 9.8v3.1pub. 2025-02-27upd. 2025-07-10

elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery (SSRF) due to insufficient validation of user-supplied URLs, which can be exploited to perform SSRF attacks.

🤖 AI Analysis
How it works

The vulnerability (CWE-918) involves the application accepting URLs from users and performing server-side requests based on them without proper verification. An attacker can supply a crafted URL pointing to internal network resources (e.g., services accessible only locally, cloud environment metadata). The lack of filtering of allowed schemes, hosts, and IP address ranges enables circumvention of perimeter security and access to resources unavailable directly from the outside.

Impact

An attacker can gain access to internal infrastructure resources (confidentiality, integrity, availability — all rated as HIGH), including network services not exposed publicly, potentially leading to further compromise of the environment.

Mitigation & patch

Apply patches available from the vendor according to the references — the fix has been submitted in pull request #4428 in the usememos/memos GitHub repository. It is recommended to update to a version containing this patch and implement firewall rules restricting outgoing connections from the application server to trusted hosts.

Who is affected

Usememos Memos v0.23.0 (elestio distribution)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Usememos Memos

    APP
    Usememos
    0.23.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SSRF
CWE
References

Related vulnerabilities

CVE-2025-50738CRITICAL9.8PL ✓ten sam produkt

Ujawnienie danych użytkownika przez osadzanie obrazków Markdown w Memos

CVE-2023-4696CRITICAL9.8ten sam produkt

Improper Access Control in GitHub repository usememos/memos prior to 0.13.2.

CVE-2022-4866CRITICAL9.0ten sam produkt

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.

CVE-2022-4865CRITICAL9.0ten sam produkt

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.

CVE-2022-4686CRITICAL9.8ten sam produkt

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0.