CVE-2026-3750
Published: 08 March 2026
Summary
CVE-2026-3750 is a medium-severity SSRF (CWE-918) vulnerability in Continew Continew Admin. Its CVSS base score is 5.1 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 17.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 AC-4 (Information Flow Enforcement) and SI-10 (Information Input Validation).
Deeper analysis
CVE-2026-3750 is a server-side request forgery (SSRF) vulnerability, classified under CWE-918, affecting ContiNew Admin versions up to 4.2.0. The flaw exists in the URI.create function of the file continew-system/src/main/java/top/continew/admin/system/factory/S3ClientFactory.java within the Storage Management Module.
The vulnerability enables remote exploitation by attackers who possess high privileges (PR:H), as indicated by its CVSS v3.1 base score of 4.7 (AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L). Successful exploitation requires network access and low attack complexity but demands elevated privileges, potentially resulting in low-level impacts to confidentiality, integrity, and availability without changing the scope.
Advisories referenced on VulDB and a Notion page detail the public disclosure of the exploit, noting it may be actively used. The vendor was notified early regarding the issue but provided no response, and no patches or specific mitigations are mentioned in the available disclosures.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-10253
Vulnerability details
A security vulnerability has been detected in ContiNew Admin up to 4.2.0. This issue affects the function URI.create of the file continew-system/src/main/java/top/continew/admin/system/factory/S3ClientFactory.java of the component Storage Management Module. The manipulation leads to server-side request forgery. The attack is possible to…
more
be carried out remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
SSRF in network-accessible admin storage module (S3ClientFactory) enables remote app exploitation (T1190) and internal service/port probing via forged requests (T1046).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly enforces validation of untrusted URI input to the vulnerable URI.create call, blocking crafted requests that trigger SSRF.
Enforces information-flow rules that restrict which destinations the Storage Management module may contact, preventing SSRF-driven outbound requests.
Boundary-protection mechanisms can apply egress filtering or allow-listing to block the unauthorized network requests enabled by the SSRF flaw.