CVE-2025-55150
Published: 11 August 2025
Summary
CVE-2025-55150 is a high-severity SSRF (CWE-918) vulnerability in Stirlingpdf Stirling Pdf. Its CVSS base score is 8.6 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 5.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 AC-4 (Information Flow Enforcement) and SC-7 (Boundary Protection).
Deeper analysis
Stirling-PDF is a locally hosted web application for performing operations on PDF files. Prior to version 1.1.0 the /api/v1/convert/html/pdf endpoint invokes a third-party tool to convert supplied HTML and applies a sanitizer that can be bypassed, resulting in a server-side request forgery flaw tracked as CWE-918.
An unauthenticated attacker can reach the endpoint over the network and supply crafted input that bypasses the sanitizer, enabling SSRF with high confidentiality impact and limited integrity and availability effects as reflected in the CVSS 8.6 score.
The vulnerability is resolved in release 1.1.0; the project advisory GHSA-xw8v-9mfm-g2pm and the associated commit 7d6b70871bad2a3ff810825f7382c49f55293943 document the patch. The EPSS score has remained flat at 0.1264 with no material rise after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-24186
Vulnerability details
Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, when using the /api/v1/convert/html/pdf endpoint to convert HTML to PDF, the backend calls a third-party tool to process it and includes a…
more
sanitizer for security sanitization which can be bypassed and result in SSRF. This issue has been patched in version 1.1.0.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
SSRF vulnerability in public-facing /api/v1/convert/html/pdf endpoint enables exploitation of public-facing applications (T1190) and facilitates internal network service discovery (T1046) by bypassing HTML sanitizer to make unauthorized requests to arbitrary internal resources.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Requires robust validation of HTML inputs to the /api/v1/convert/html/pdf endpoint to prevent sanitizer bypasses and SSRF payloads.
Enforces information flow control policies to restrict the backend third-party tool from initiating unauthorized requests to internal or external resources.
Implements boundary protections like web application firewalls or outbound network filters to block SSRF exploitation from the vulnerable Stirling-PDF instance.