CVE-2026-33401 is a Server-Side Request Forgery (SSRF) vulnerability affecting ellite Wallos, an open-source, self-hostable personal subscription tracker. Prior to version 4.7.0, although a patch (CVE-2026-30840) addressed SSRF protection on notification test endpoints, three other critical endpoints remained vulnerable: the AI Ollama host parameter, the AI recommendations endpoint, and the notification cron job. An authenticated attacker can exploit these unprotected endpoints by supplying crafted URLs that cause the server to make unauthorized requests to internal network services, localhost-bound services, or cloud metadata endpoints such as AWS IMDSv1, Google Cloud Platform, and Azure Instance Metadata Service. This can lead to unauthorized access to sensitive internal resources, potentially exposing confidential information or enabling further attacks within the internal network. The vulnerability does not require user interaction but does require authentication, which limits exploitation to users with some level of access. The issue was patched in Wallos version 4.7.0, closing these attack surfaces. The CVSS 4.0 base score is 7.1 (high), reflecting network attack vector, low attack complexity, no privileges required beyond authentication, and high impact on confidentiality. No known exploits are currently reported in the wild.

The SSRF vulnerability allows authenticated users to pivot from the application to internal network resources, which are typically inaccessible externally. This can lead to unauthorized disclosure of sensitive internal data, including cloud metadata endpoints that may contain credentials or tokens granting further access to cloud resources. Exploitation could enable attackers to enumerate internal services, access localhost-only services, or escalate privileges by abusing exposed internal APIs. For organizations, this can result in data breaches, lateral movement within internal networks, and compromise of cloud infrastructure. The impact is especially critical for organizations relying on Wallos for subscription tracking integrated with AI features or cloud services. Since the vulnerability requires authentication, insider threats or compromised accounts pose a significant risk. The absence of user interaction lowers the barrier for exploitation once authenticated access is obtained.

The primary mitigation is to upgrade Wallos installations to version 4.7.0 or later, which patches the SSRF vulnerabilities across all affected endpoints. Organizations should audit and restrict access to internal network services and cloud metadata endpoints from application servers, implementing network segmentation and firewall rules to limit outbound requests. Additionally, review and harden authentication mechanisms to prevent unauthorized access to the application. Implement strict input validation and URL allowlisting on any parameters that trigger server-side requests. Monitoring and logging outbound requests from the application can help detect anomalous SSRF attempts. For cloud environments, enforce the use of IMDSv2 or equivalent metadata service protections to reduce risk from SSRF attacks. Regularly review and update dependencies and apply security patches promptly.