CVE Catalog

CVE-2026-58418

MediumCVSS 6.5
Published: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

15th percentile — higher than 15% of all known CVEs

Summary

An SSRF (Server-Side Request Forgery) vulnerability exists during repository migration when the application follows HTTP redirects. An attacker can exploit this to send requests to internal network resources.

Risk Assessment

The risk involves potential scanning of internal networks, access to sensitive data or services not publicly exposed, which could lead to attack escalation.

Recommendation

It is recommended to restrict or disable following HTTP redirects during repository migration and validate target URLs before making requests.

Original NVD description (English source)

SSRF via HTTP Redirect in Repository Migration

Vulnerability data from NVD (NIST) · CISA KEV · EPSS