CVE-2026-32828 is a Server-Side Request Forgery (SSRF) vulnerability affecting multiple versions of akuity kargo, a tool used to manage and automate software artifact promotion. The vulnerability resides in the http and http-download promotion steps, which allow an attacker to craft requests that the server executes internally. Specifically, the flaw permits SSRF attacks targeting link-local IP addresses, including the cloud instance metadata service at 169.254.169.254. This metadata endpoint typically contains sensitive information such as IAM credentials and other cloud instance details. The vulnerability is exacerbated by the attacker's ability to fully control HTTP request headers and methods, rendering common cloud provider SSRF mitigations ineffective. Exploitation requires authentication with permissions to create or update Stages or Promotion resources, which means the attacker must have some level of authorized access. The attacker can submit a malicious Promotion manifest that triggers the SSRF and retrieve the response data through Promotion status fields, Git repositories, or subsequent http steps. This data exfiltration can lead to credential compromise and further cloud environment infiltration. The vulnerability affects versions 1.4.0 through 1.6.3, 1.7.0-rc.1 through 1.7.8, 1.8.0-rc.1 through 1.8.11, and 1.9.0-rc.1 through 1.9.4 of akuity kargo. Fixed versions include 1.6.4, 1.7.9, 1.8.12, and 1.9.5. The CVSS 4.0 vector indicates network attack vector, low attack complexity, no user interaction, and requires high privileges, resulting in a medium severity rating. No public exploits have been reported to date.

The primary impact of this SSRF vulnerability is the unauthorized access and exfiltration of sensitive cloud instance metadata, including IAM credentials. Compromise of these credentials can lead to privilege escalation, lateral movement, and full cloud environment takeover. Organizations using vulnerable versions of akuity kargo risk exposure of their cloud infrastructure secrets, potentially resulting in data breaches, service disruptions, and financial loss. Since the attacker must have authenticated access with permissions to create or update promotion resources, insider threats or compromised accounts pose significant risk. The ability to bypass cloud provider SSRF mitigations increases the attack's effectiveness. This vulnerability can undermine trust in the software supply chain automation process, as attackers could manipulate artifact promotion to further compromise systems. Overall, the impact extends beyond the immediate SSRF to broader cloud security and operational integrity.

1. Upgrade akuity kargo to the fixed versions: 1.6.4, 1.7.9, 1.8.12, or 1.9.5 immediately to eliminate the vulnerability. 2. Restrict permissions to create or update Stages or Promotion resources strictly to trusted and necessary personnel to reduce the attack surface. 3. Implement network segmentation and firewall rules to block internal access from the kargo server to sensitive link-local IP addresses such as 169.254.169.254, where feasible. 4. Monitor and audit promotion manifests and status fields for unusual or unexpected HTTP requests or responses that could indicate exploitation attempts. 5. Employ strong authentication and session management to prevent account compromise of users with promotion resource privileges. 6. Consider implementing additional application-layer SSRF protections such as request validation, allowlisting of external URLs, and limiting HTTP methods and headers allowed in promotion steps. 7. Conduct regular security reviews and penetration tests focusing on internal request handling and metadata service protections. 8. Educate developers and operators about the risks of SSRF and the importance of least privilege in artifact promotion workflows.