Open Redirect Vulnerability in Labstack Echo v4.8.0's Static Handler Component Allows SSRF

CVE-2022-40083 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery (SSRF).

Learn more about our Cis Benchmark Audit For Server Software.