CVE Catalog

CVE-2026-59095

HighCVSS 7.7
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

14th percentile — higher than 14% of all known CVEs

Summary

LobeChat before version 2.2.10-canary.18 contains a server-side request forgery (SSRF) vulnerability. An authenticated attacker can direct internal HTTP requests to arbitrary URLs by exploiting the skill import (importFromUrl) and topic cover update (fetchImageFromUrl) endpoints, which use the global fetch without the project's ssrf-safe-fetch wrapper.

Risk Assessment

The risk involves potential disclosure of internal service responses and cloud credentials, for example by accessing cloud instance metadata endpoints. This could lead to privilege escalation and compromise of the cloud environment.

Recommendation

Immediately upgrade LobeChat to version 2.2.10-canary.18 or later. Additionally, implement URL validation and filtering mechanisms in endpoints processing user input to protect against similar attacks.

Original NVD description (English source)

LobeChat before 2.2.10-canary.18 contains a server-side request forgery vulnerability that allows authenticated attackers to direct internal HTTP requests to arbitrary URLs by supplying user-controlled input to the skill import service (importFromUrl) and topic cover update (fetchImageFromUrl) endpoints, which use the global fetch without the project's ssrf-safe-fetch wrapper. Attackers can target internal addresses such as cloud instance metadata endpoints through these unprotected code paths to disclose internal service responses and cloud credentials.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS