CVE-2026-33953: CWE-918: Server-Side Request Forgery (SSRF) in Kovah LinkAce
LinkAce is a self-hosted archive to collect website links. Versions prior to 2.5.3 block direct requests to private IP literals, but still performs server-side requests to internal-only resources when those resources are referenced through an internal hostname. This allows an authenticated user to trigger server-side requests to internal services reachable by the LinkAce server but not directly reachable by an external user. Version 2.5.3 patches the issue.
AI Analysis
Technical Summary
LinkAce before version 2.5.3 contains an SSRF vulnerability (CWE-918) where authenticated users can cause the server to make requests to internal network resources by referencing internal hostnames. Although direct requests to private IP literals are blocked, the server still processes requests to internal-only resources via hostname resolution. This can lead to unauthorized internal network access through the server. The vulnerability has a CVSS 3.1 score of 8.5, indicating high severity. The issue is resolved in LinkAce version 2.5.3.
Potential Impact
An authenticated user can exploit this vulnerability to make the LinkAce server send requests to internal network services that are otherwise inaccessible externally. This can lead to unauthorized information disclosure or interaction with internal systems. The CVSS score of 8.5 reflects a high impact on confidentiality with limited impact on integrity and no impact on availability.
Mitigation Recommendations
Upgrade LinkAce to version 2.5.3 or later, where this SSRF vulnerability is patched. No other mitigations are indicated by the vendor advisory. Since this is a self-hosted product, administrators must apply the update to remediate the issue.
CVE-2026-33953: CWE-918: Server-Side Request Forgery (SSRF) in Kovah LinkAce
Description
LinkAce is a self-hosted archive to collect website links. Versions prior to 2.5.3 block direct requests to private IP literals, but still performs server-side requests to internal-only resources when those resources are referenced through an internal hostname. This allows an authenticated user to trigger server-side requests to internal services reachable by the LinkAce server but not directly reachable by an external user. Version 2.5.3 patches the issue.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
LinkAce before version 2.5.3 contains an SSRF vulnerability (CWE-918) where authenticated users can cause the server to make requests to internal network resources by referencing internal hostnames. Although direct requests to private IP literals are blocked, the server still processes requests to internal-only resources via hostname resolution. This can lead to unauthorized internal network access through the server. The vulnerability has a CVSS 3.1 score of 8.5, indicating high severity. The issue is resolved in LinkAce version 2.5.3.
Potential Impact
An authenticated user can exploit this vulnerability to make the LinkAce server send requests to internal network services that are otherwise inaccessible externally. This can lead to unauthorized information disclosure or interaction with internal systems. The CVSS score of 8.5 reflects a high impact on confidentiality with limited impact on integrity and no impact on availability.
Mitigation Recommendations
Upgrade LinkAce to version 2.5.3 or later, where this SSRF vulnerability is patched. No other mitigations are indicated by the vendor advisory. Since this is a self-hosted product, administrators must apply the update to remediate the issue.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-03-24T19:50:52.106Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69c6f6ca3c064ed76ff81bbd
Added to database: 3/27/2026, 9:29:46 PM
Last enriched: 4/4/2026, 11:02:28 AM
Last updated: 5/11/2026, 6:22:27 AM
Views: 46
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.