CVE-2026-24048

LOW
中文标题:
(暂无数据)
英文标题:
Backstage has a Possible SSRF when reading from allowed URL's in `backend.reading.allow`
CVSS分数: 3.5
发布时间: 2026-01-21 22:51:44
漏洞类型: (暂无数据)
状态: PUBLISHED
数据质量分数: 0.30
数据版本: v2
漏洞描述
中文描述:

(暂无数据)

英文描述:

Backstage is an open framework for building developer portals, and @backstage/backend-defaults provides the default implementations and setup for a standard Backstage backend app. Prior to versions 0.12.2, 0.13.2, 0.14.1, and 0.15.0, the `FetchUrlReader` component, used by the catalog and other plugins to fetch content from URLs, followed HTTP redirects automatically. This allowed an attacker who controls a host listed in `backend.reading.allow` to redirect requests to internal or sensitive URLs that are not on the allowlist, bypassing the URL allowlist security control. This is a Server-Side Request Forgery (SSRF) vulnerability that could allow access to internal resources, but it does not allow attackers to include additional request headers. This vulnerability is fixed in `@backstage/backend-defaults` version 0.12.2, 0.13.2, 0.14.1, and 0.15.0. Users should upgrade to this version or later. Some workarounds are available. Restrict `backend.reading.allow` to only trusted hosts that you control and that do not issue redirects, ensure allowed hosts do not have open redirect vulnerabilities, and/or use network-level controls to block access from Backstage to sensitive internal endpoints.

CWE类型:
CWE-918
标签:
(暂无数据)
受影响产品
厂商 产品 版本 版本范围 平台 CPE
backstage backstage < 0.12.2 - - cpe:2.3:a:backstage:backstage:<_0.12.2:*:*:*:*:*:*:*
backstage backstage >= 0.13.0, < 0.13.2 - - cpe:2.3:a:backstage:backstage:>=_0.13.0,_<_0.13.2:*:*:*:*:*:*:*
backstage backstage >= 0.14.0, < 0.14.1 - - cpe:2.3:a:backstage:backstage:>=_0.14.0,_<_0.14.1:*:*:*:*:*:*:*
解决方案
中文解决方案:
(暂无数据)
英文解决方案:
(暂无数据)
临时解决方案:
(暂无数据)
参考链接
https://github.com/backstage/backstage/security/advisories/GHSA-q2x5-4xjx-c6p9 x_refsource_CONFIRM
cve.org
访问
https://github.com/backstage/backstage/commit/27f9061d24affd1b9212fe0abd476bfc3fbaedcb x_refsource_MISC
cve.org
访问
CVSS评分详情
3.1 (cna)
LOW
3.5
CVSS向量: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N
机密性
LOW
完整性
NONE
可用性
NONE
时间信息
发布时间:
2026-01-21 22:51:44
修改时间:
2026-01-21 22:51:44
创建时间:
2026-01-22 06:00:11
更新时间:
2026-01-22 06:00:14
利用信息
暂无可利用代码信息
数据源详情
数据源 记录ID 版本 提取时间
CVE cve_CVE-2026-24048 2026-01-22 03:19:50 2026-01-21 22:00:11
NVD nvd_CVE-2026-24048 2026-01-22 02:00:05 2026-01-21 22:00:14
版本与语言
当前版本: v2
主要语言: EN
支持语言:
EN
安全公告
暂无安全公告信息
变更历史
v2 NVD
2026-01-22 06:00:14
data_sources: ['cve'] → ['cve', 'nvd']
查看详细变更
  • data_sources: ['cve'] -> ['cve', 'nvd']