CVE-2024-47066

Name of the Vulnerable Software and Affected Versions Lobe Chat versions prior to 1.19.13

Description The issue concerns a server-side request forgery protection bypass in Lobe Chat, an open-source artificial intelligence chat framework. This protection, implemented in src/app/api/proxy/route.ts, does not consider redirects and can be bypassed when an attacker provides an external malicious URL that redirects to internal resources like a private network or loopback address. This allows attackers to access internal services. The estimated number of potentially affected devices worldwide is not specified. There is no information provided about real-world incidents where this issue was exploited.

Technical details about exploitation include:

Recommendations For versions prior to 1.19.13, update to version 1.19.13 or later, which contains an improved fix for the issue. As a temporary workaround, consider disabling redirects in the /api/proxy endpoint to minimize the risk of exploitation. Restrict access to the /api/proxy endpoint to prevent attackers from performing SSRF attacks against internal services. Avoid using the url parameter in the /api/proxy endpoint until the issue is resolved.