CVE-2023-46736

Name of the Vulnerable Software and Affected Versions EspoCRM versions prior to 8.0.5

Description The issue is related to a Server-Side Request Forgery (SSRF) vulnerability via the upload image from URL API. Users with access to the /Attachment/fromImageUrl endpoint can specify a URL to point to an internal host. Although there is a check for content type, it can be bypassed by redirects in some cases. This SSRF can be leveraged to disclose internal information, target internal hosts, and bypass firewalls.

Recommendations For versions prior to 8.0.5, upgrade to release version 8.0.5 or later to address the vulnerability. As a temporary workaround, consider restricting access to the /Attachment/fromImageUrl endpoint until the issue is resolved. Additionally, be cautious when using the upload image from URL API to minimize the risk of exploitation.