CVE-2024-54819
Published: 07 January 2025
Summary
CVE-2024-54819 is a critical-severity SSRF (CWE-918) vulnerability in Partywave (inferred from references). Its CVSS base score is 9.1 (Critical).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 2.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Deeper analysis
I, Librarian versions up to and including 5.11.1 contain a Server-Side Request Forgery vulnerability (CWE-918) caused by insufficient input validation in classes/security/validation.php. The flaw carries a CVSS 3.1 score of 9.1, reflecting network-accessible attack vectors that require no authentication or user interaction and can affect both confidentiality and integrity.
An unauthenticated remote attacker can supply crafted input that causes the application to issue arbitrary HTTP requests to internal or external resources, enabling reconnaissance, data exfiltration, or interaction with services reachable from the server. The published references include a GitHub commit that addresses the validation logic and a technical write-up demonstrating the issue.
The associated EPSS score has reached a peak of 0.4950 with a current value of 0.4722, indicating sustained but not sharply increasing exploitation interest since disclosure. No public reports of in-the-wild exploitation are referenced in the available sources.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-52677
Vulnerability details
I, Librarian before and including 5.11.1 is vulnerable to Server-Side Request Forgery (SSRF) due to improper input validation in classes/security/validation.php
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
SSRF in public-facing web application directly enables remote exploitation for initial access (T1190).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly addresses the root cause of SSRF by requiring validation of inputs in classes/security/validation.php to prevent malicious server-side requests.
Mandates timely patching of the specific flaw in I, Librarian versions before 5.11.1 as provided in the fixing commit.
Enforces boundary protections such as proxies or WAFs to restrict unauthorized outbound requests induced by SSRF exploitation.