CVE-2026-33226
Published: 20 March 2026
Summary
CVE-2026-33226 is a high-severity SSRF (CWE-918) vulnerability in Budibase Budibase. Its CVSS base score is 8.7 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Cloud Instance Metadata API (T1522); ranked at the 4.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 AC-4 (Information Flow Enforcement) and SC-7 (Boundary Protection).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly addresses the lack of validation on user-supplied fields.path URLs in the REST query preview endpoint, preventing SSRF to arbitrary internal services.
Monitors and controls communications at internal boundaries to block Budibase server requests to unauthorized internal services like cloud metadata endpoints and Kubernetes APIs.
Enforces approved information flows to restrict server-side HTTP requests from the query preview endpoint to internal network destinations.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
SSRF enables direct queries to cloud metadata endpoints for OAuth token theft (T1522/T1552.005) and arbitrary internal HTTP requests for network/service enumeration (T1046/T1018).
NVD Description
Budibase is a low code platform for creating internal tools, workflows, and admin panels. In versions from 3.30.6 and prior, the REST datasource query preview endpoint (POST /api/queries/preview) makes server-side HTTP requests to any URL supplied by the user in…
more
fields.path with no validation. An authenticated admin can reach internal services that are not exposed to the internet — including cloud metadata endpoints (AWS/GCP/Azure), internal databases, Kubernetes APIs, and other pods on the internal network. On GCP this leads to OAuth2 token theft with cloud-platform scope (full GCP access). On any deployment it enables full internal network enumeration. At time of publication, there are no publicly available patches.
Deeper analysisAI
CVE-2026-33226 is a server-side request forgery vulnerability (CWE-918) affecting Budibase, a low-code platform for building internal tools, workflows, and admin panels. In versions 3.30.6 and prior, the REST datasource query preview endpoint (POST /api/queries/preview) executes server-side HTTP requests to arbitrary URLs provided by users in the fields.path parameter without any validation. This flaw has a CVSS v3.1 base score of 8.7 (AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N), indicating high confidentiality and integrity impacts with changed scope.
An authenticated administrator can exploit this vulnerability remotely over the network with low complexity. By supplying malicious URLs, the attacker tricks the Budibase server into making requests to internal services not exposed to the internet, such as cloud metadata endpoints on AWS, GCP, or Azure, internal databases, Kubernetes APIs, and other pods on the internal network. On GCP deployments, this enables theft of OAuth2 tokens with cloud-platform scope, granting full access to GCP resources. Across any deployment, it allows comprehensive internal network enumeration.
The primary advisory, published via GitHub Security Advisory GHSA-4647-wpjq-hh7f, confirms the issue and notes that no publicly available patches exist as of the CVE publication date on 2026-03-20. Security practitioners should restrict admin access, monitor query preview endpoint usage, and consider network segmentation or proxying internal requests until a patch is released.
Details
- CWE(s)