CVE-2026-25123

EPSS 0.05%
Veröffentlicht 06.02.2026 21:19:40
Zuletzt bearbeitet 18.02.2026 18:08:19
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Homarr is an open-source dashboard. Prior to 1.52.0, a public (unauthenticated) tRPC endpoint widget.app.ping accepts an arbitrary url and performs a server-side request to that URL. This allows an unauthenticated attacker to trigger outbound HTTP requests from the Homarr server, enabling SSRF behavior and a reliable port-scanning primitive (open vs closed ports can be inferred from statusCode vs fetch failed and timing). This vulnerability is fixed in 1.52.0.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Homarr ≫ Homarr Version < 1.52.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.154

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-918 Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

https://github.com/homarr-labs/homarr/security/advisories/GHSA-c6rh-8wj4-gv74

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-25123

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-25123

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-25123

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-25123