CVE-2026-45310 | Hmbown CodeWhale up to 0.8.21 Cloud Metadata Endpoint is_restricted_ip server-side request forgery

Inserito da Angelo Barbosa | Mag 28, 2026 | CVE

A vulnerability classified as critical was found in Hmbown CodeWhale up to 0.8.21. This vulnerability affects the function is_restricted_ip of the component Cloud Metadata Endpoint. Such manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2026-45310. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-45310 | Hmbown CodeWhale up to 0.8.21 Cloud Metadata Endpoint is_restricted_ip server-side request forgery

Post correlati

CVE-2024-26710 | Linux Kernel up to 6.1.78/6.6.17/6.7.5 KASAN Thread stack-based overflow (4297217bcf1f/4cc31fa07445/b29b16bd836a)

CVE-2022-48724 | Linux Kernel up to 5.16.7 iommu intel_setup_irq_remapping memory leak

CVE-2023-52904 | Linux Kernel ALSA snd_usb_pcm_has_fixed_rate null pointer dereference (a474d4ad59cd/92a9c0ad86d4)

CVE-2025-20200 | Cisco IOS XE up to 17.15.1w CLI unusual condition (cisco-sa-iosxe-privesc-su7scvdp)