CVE-2023-30019
Published: 08 May 2023
Summary
CVE-2023-30019 is a medium-severity SSRF (CWE-918) vulnerability in Evilmartians Imgproxy. Its CVSS base score is 5.3 (Medium).
Operationally, ranked in the top 1.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
imgproxy versions up to and including 3.14.0 contain a Server-Side Request Forgery flaw (CWE-918) caused by missing validation of the imageURL parameter. The affected component is the open-source image proxy service that fetches and processes remote images on behalf of clients, and the issue carries a CVSS 3.1 score of 5.3 reflecting network attackability without authentication or user interaction.
An unauthenticated attacker can supply a crafted imageURL that causes the imgproxy instance to issue HTTP requests to arbitrary internal or external destinations. Successful exploitation yields limited confidentiality impact by allowing the attacker to probe or retrieve data reachable from the proxy’s network perspective.
The referenced analysis on breakandpray.com together with the project repository on GitHub constitute the primary public sources for this CVE; no separate vendor advisory or explicit patch version is listed in the supplied references. The associated EPSS values, currently 0.7062 with a recorded peak of 0.7134, indicate sustained and substantial exploitation interest following disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-1520
Vulnerability details
imgproxy <=3.14.0 is vulnerable to Server-Side Request Forgery (SSRF) due to a lack of sanitization of the imageURL parameter.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Penetration testing attempts server-side requests to internal resources, identifying SSRF weaknesses for remediation.
Outbound connections to external resources can be monitored and limited at the boundary, reducing SSRF impact.
Validates server-side URLs and resource references to block SSRF attempts.
Detects server-side request forgery through monitoring of unexpected outbound connections.