CVE-2025-62719 is a Server-Side Request Forgery (SSRF) vulnerability identified in Kovah's LinkAce, a self-hosted link archiving application. The vulnerability exists in versions 2.3.0 and earlier within the htmlKeywordsFromUrl function of the FetchController class. This function accepts URLs provided by authenticated users and performs HTTP requests to these URLs without validating whether the target is an internal or private network resource. Consequently, an attacker with valid credentials can leverage the application server to conduct port scanning and service discovery on internal network hosts that would otherwise be inaccessible externally. Despite this, the potential for data exfiltration is minimal because the function only extracts content from HTML meta keywords tags, which limits the ability to retrieve sensitive data from databases, APIs, or cloud metadata endpoints. The vulnerability does not require user interaction beyond authentication and has a low attack complexity. The CVSS 4.0 base score is 2.3, reflecting low severity due to limited impact and the requirement for authenticated access. No known exploits have been reported in the wild. The vulnerability was published on November 4, 2025, and has been addressed in LinkAce version 2.4.0, which includes proper validation to prevent SSRF attacks by restricting requests to internal or private network resources.

For European organizations using LinkAce versions 2.3.0 or earlier, this SSRF vulnerability could allow authenticated users to perform reconnaissance on internal network infrastructure by scanning ports and discovering services. While the direct risk of data theft or system compromise is low due to the limited data extraction capability, the information gathered through port scanning could aid attackers in planning further attacks. This is particularly relevant for organizations with sensitive internal networks or segmented environments where external access is restricted. The vulnerability could also be leveraged in multi-tenant or shared hosting environments to map internal resources. However, since exploitation requires authentication, the threat is mitigated by strong access controls. The limited severity and absence of known exploits reduce immediate risk, but organizations should not ignore the potential for internal reconnaissance that could facilitate more serious attacks.

European organizations should upgrade LinkAce installations to version 2.4.0 or later, where the SSRF vulnerability is fixed by validating and restricting URLs to prevent requests to internal or private network addresses. Until upgrading is possible, organizations should enforce strict authentication and authorization policies to limit access to trusted users only. Network segmentation and firewall rules should be implemented to restrict outbound HTTP requests from the LinkAce server to only necessary external destinations, blocking requests to internal IP ranges. Monitoring and logging HTTP requests made by the application can help detect suspicious scanning activity. Additionally, applying web application firewalls (WAFs) with SSRF detection capabilities can provide an extra layer of defense. Regularly reviewing and auditing user permissions and access logs will further reduce the risk of exploitation.