CVE-2026-45245

HighPublic PoC

Published: 18 May 2026

Published

18 May 2026

Modified

19 May 2026

KEV Added

—

Patch

—

CVSS Score 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

EPSS Score 0.0001 1.1th percentile

Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-45245 is a high-severity SSRF (CWE-918) vulnerability in Steipete Summarize. Its CVSS base score is 7.4 (High).

Operationally, ranked at the 1.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

Threat & Defense Details

Likely Mitigating ControlsAI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

CA-8 Penetration Testing

addresses: CWE-918

Penetration testing attempts server-side requests to internal resources, identifying SSRF weaknesses for remediation.

IA-9 Service Identification and Authentication

addresses: CWE-940

Enforces verification of the source of a communication channel by requiring identification and authentication of services first.

SC-11 Trusted Path

addresses: CWE-940

Requires explicit verification of the source and integrity of the channel used for authentication and other security functions.

SC-20 Secure Name/Address Resolution Service (Authoritative Source)

addresses: CWE-940

Provides the means to verify the source of name-resolution responses instead of relying on unauthenticated channels.

SC-23 Session Authenticity

addresses: CWE-940

Requires explicit verification of the communication source, blocking session hijacking via spoofed or alternate channels.

SC-7 Boundary Protection

addresses: CWE-918

Outbound connections to external resources can be monitored and limited at the boundary, reducing SSRF impact.

SI-10 Information Input Validation

addresses: CWE-918

Validates server-side URLs and resource references to block SSRF attempts.

SI-4 System Monitoring

addresses: CWE-918

Detects server-side request forgery through monitoring of unexpected outbound connections.

NVD Description

Summarize prior to 0.15.1 contains a vulnerability in the hover summary feature that allows malicious pages to dispatch synthetic mouseover events over attacker-controlled links, causing the extension to make authenticated daemon requests using stored tokens without verifying event trustworthiness. Attackers…

can place local or private-network URLs behind hoverable links to route authenticated requests through the daemon, potentially accessing sensitive internal endpoints when users interact with attacker-controlled content.

Deeper analysisAI

Automated synthesis unavailable for this CVE.

Details

CWE(s): CWE-918 CWE-940

Affected Products

steipete

summarize

≤ 0.15.1

References

https://github.com/steipete/summarize/commit/ecbb2c414255aa480a15d0d8b205224c14cfdbcb
Patch · disclosure@vulncheck.com
https://github.com/steipete/summarize/pull/218
Exploit, Issue Tracking, Patch · disclosure@vulncheck.com
https://github.com/steipete/summarize/releases/tag/v0.15.2
Release Notes · disclosure@vulncheck.com
https://www.vulncheck.com/advisories/summarize-unauthorized-daemon-request-via-untrusted-events
Third Party Advisory · disclosure@vulncheck.com
https://github.com/steipete/summarize/pull/218
Exploit, Issue Tracking, Patch · 134c704f-9b21-4f2e-91b3-4a467353bcc0