CVE-2026-45082: CWE-918: Server-Side Request Forgery (SSRF) in karakeep-app karakeep
Karakeep is a elf-hostable bookmark-everything app. A Server-Side Request Forgery (SSRF) protection bypass vulnerability was identified in versions prior to 0.32.0 affecting redirect-following processing components. Although the application implements protections intended to prevent requests toward internal/private network destinations, these protections could be bypassed through crafted HTTP redirect chains. By leveraging attacker-controlled redirects, an authenticated user could cause vulnerable application components to initiate requests toward internally reachable Docker network services accessible from the application environment. The issue affected multiple processing paths, including crawler-related functionality and video download processing flows. Version 0.32.0 contains a patch.
AI Analysis
Technical Summary
Karakeep, a self-hostable bookmark application, had an SSRF protection bypass vulnerability (CWE-918) in versions before 0.32.0. The application’s safeguards against requests to internal or private network addresses could be circumvented by attacker-controlled HTTP redirect chains. This allowed authenticated users to induce the application to make requests to internal Docker network services accessible from the application environment. The flaw impacted several processing components such as crawler-related features and video download processing. The issue was addressed and fixed in version 0.32.0.
Potential Impact
An authenticated attacker could exploit this vulnerability to cause the application to send requests to internal/private network services that are normally inaccessible externally. This could lead to unauthorized information disclosure or limited disruption of availability. The CVSS score of 7.6 reflects high severity with high confidentiality impact, low integrity impact, and low availability impact. There are no known exploits in the wild at this time.
Mitigation Recommendations
Upgrade Karakeep to version 0.32.0 or later, which contains the official patch addressing this SSRF protection bypass. Since this is a self-hosted application, users must apply the update themselves. Patch status is confirmed by the vendor advisory indicating version 0.32.0 contains the fix.
CVE-2026-45082: CWE-918: Server-Side Request Forgery (SSRF) in karakeep-app karakeep
Description
Karakeep is a elf-hostable bookmark-everything app. A Server-Side Request Forgery (SSRF) protection bypass vulnerability was identified in versions prior to 0.32.0 affecting redirect-following processing components. Although the application implements protections intended to prevent requests toward internal/private network destinations, these protections could be bypassed through crafted HTTP redirect chains. By leveraging attacker-controlled redirects, an authenticated user could cause vulnerable application components to initiate requests toward internally reachable Docker network services accessible from the application environment. The issue affected multiple processing paths, including crawler-related functionality and video download processing flows. Version 0.32.0 contains a patch.
CVSS v3.1
Score 7.6high
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Karakeep, a self-hostable bookmark application, had an SSRF protection bypass vulnerability (CWE-918) in versions before 0.32.0. The application’s safeguards against requests to internal or private network addresses could be circumvented by attacker-controlled HTTP redirect chains. This allowed authenticated users to induce the application to make requests to internal Docker network services accessible from the application environment. The flaw impacted several processing components such as crawler-related features and video download processing. The issue was addressed and fixed in version 0.32.0.
Potential Impact
An authenticated attacker could exploit this vulnerability to cause the application to send requests to internal/private network services that are normally inaccessible externally. This could lead to unauthorized information disclosure or limited disruption of availability. The CVSS score of 7.6 reflects high severity with high confidentiality impact, low integrity impact, and low availability impact. There are no known exploits in the wild at this time.
Mitigation Recommendations
Upgrade Karakeep to version 0.32.0 or later, which contains the official patch addressing this SSRF protection bypass. Since this is a self-hosted application, users must apply the update themselves. Patch status is confirmed by the vendor advisory indicating version 0.32.0 contains the fix.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-08T18:45:10.097Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a15af1f891d628fdc46fa0d
Added to database: 5/26/2026, 2:33:03 PM
Last enriched: 5/26/2026, 2:47:37 PM
Last updated: 5/26/2026, 9:53:40 PM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.