CVE-2026-45310: CWE-918: Server-Side Request Forgery (SSRF) in Hmbown CodeWhale
CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.22, the fetch_url tool validates the initial URL's resolved IP address against a restricted-IP blocklist (is_restricted_ip()) to prevent SSRF attacks against internal services (cloud metadata endpoints, localhost, private networks). However, the HTTP client (reqwest) is configured to automatically follow up to 5 redirects (reqwest::redirect::Policy::limited(5)) without re-validating the redirect target against the same SSRF protections. This vulnerability is fixed in 0.8.22.
AI Analysis
Technical Summary
CodeWhale versions prior to 0.8.22 contain an SSRF vulnerability due to insufficient validation of redirected URLs in the fetch_url tool. While the initial URL's IP address is checked against a restricted IP blocklist to prevent SSRF attacks targeting internal services, the HTTP client (reqwest) automatically follows up to 5 redirects without re-validating the redirected URLs against the same blocklist. This allows an attacker to potentially bypass SSRF protections by leveraging redirects to access internal or restricted network resources. The vulnerability is identified as CWE-918 and has a CVSS 3.1 score of 7.4, indicating high severity. The issue is resolved in CodeWhale version 0.8.22.
Potential Impact
Successful exploitation of this SSRF vulnerability could allow an attacker to make unauthorized requests from the vulnerable server to internal services that are normally inaccessible externally, such as cloud metadata endpoints, localhost, or private network resources. The CVSS vector indicates the attack can be performed remotely without privileges and requires user interaction, with high confidentiality impact but no impact on integrity or availability. No known exploits in the wild have been reported.
Mitigation Recommendations
Users should upgrade CodeWhale to version 0.8.22 or later, where this SSRF vulnerability is fixed by adding validation of redirect targets against the restricted IP blocklist. Since the vendor advisory is not explicitly provided, patch status is inferred from the version information. Until upgrading, users should avoid using the vulnerable fetch_url tool or restrict its usage to trusted URLs. Monitor vendor advisories for official patch releases or additional mitigation guidance.
CVE-2026-45310: CWE-918: Server-Side Request Forgery (SSRF) in Hmbown CodeWhale
Description
CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.22, the fetch_url tool validates the initial URL's resolved IP address against a restricted-IP blocklist (is_restricted_ip()) to prevent SSRF attacks against internal services (cloud metadata endpoints, localhost, private networks). However, the HTTP client (reqwest) is configured to automatically follow up to 5 redirects (reqwest::redirect::Policy::limited(5)) without re-validating the redirect target against the same SSRF protections. This vulnerability is fixed in 0.8.22.
CVSS v3.1
Score 7.4high
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CodeWhale versions prior to 0.8.22 contain an SSRF vulnerability due to insufficient validation of redirected URLs in the fetch_url tool. While the initial URL's IP address is checked against a restricted IP blocklist to prevent SSRF attacks targeting internal services, the HTTP client (reqwest) automatically follows up to 5 redirects without re-validating the redirected URLs against the same blocklist. This allows an attacker to potentially bypass SSRF protections by leveraging redirects to access internal or restricted network resources. The vulnerability is identified as CWE-918 and has a CVSS 3.1 score of 7.4, indicating high severity. The issue is resolved in CodeWhale version 0.8.22.
Potential Impact
Successful exploitation of this SSRF vulnerability could allow an attacker to make unauthorized requests from the vulnerable server to internal services that are normally inaccessible externally, such as cloud metadata endpoints, localhost, or private network resources. The CVSS vector indicates the attack can be performed remotely without privileges and requires user interaction, with high confidentiality impact but no impact on integrity or availability. No known exploits in the wild have been reported.
Mitigation Recommendations
Users should upgrade CodeWhale to version 0.8.22 or later, where this SSRF vulnerability is fixed by adding validation of redirect targets against the restricted IP blocklist. Since the vendor advisory is not explicitly provided, patch status is inferred from the version information. Until upgrading, users should avoid using the vulnerable fetch_url tool or restrict its usage to trusted URLs. Monitor vendor advisories for official patch releases or additional mitigation guidance.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-11T20:50:30.538Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a188377e29bf47b50179033
Added to database: 5/28/2026, 6:03:35 PM
Last enriched: 5/28/2026, 6:18:55 PM
Last updated: 5/29/2026, 6:22:35 PM
Views: 11
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.