cbcvebase.
CVE-2022-40083
published 2022-09-28

CVE-2022-40083: Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by…

PriorityP348critical9.6CVSS 3.1
AVNACLPRNUIRSCCHIHAH
EXPLOIT
EPSS
2.31%
81.2th percentile
Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery (SSRF).

Affected

5 ranges
VendorProductVersion rangeFixed in
debiangolang-github-labstack-echo< golang-github-labstack-echo 4.11.1-1 (forky)golang-github-labstack-echo 4.11.1-1 (forky)
debiangolang-github-labstack-echo.v2< golang-github-labstack-echo 4.11.1-1 (forky)golang-github-labstack-echo 4.11.1-1 (forky)
debiangolang-github-labstack-echo.v3< golang-github-labstack-echo 4.11.1-1 (forky)golang-github-labstack-echo 4.11.1-1 (forky)
github.comlabstack_echo_v4>= 0 < 4.9.04.9.0
labstackecho

Detection & IOCsextracted from sources · hover to see the quote

url{{BaseURL}}//interactsh.com%2f..
  • Send a GET request with a double-slash path containing a URL-encoded slash followed by '..': //interactsh.com%2f.. — a vulnerable Labstack Echo 4.8.0 Static Handler will respond with HTTP 301 and a Location header matching ^\s*//interactsh.com/\..
  • The vulnerability is specifically in the Static Handler component of Labstack Echo 4.8.0; monitor for double-slash redirect patterns in HTTP 301 responses originating from Echo-based applications.
  • ·The Nuclei template targets interactsh.com as the redirect destination for detection; in production scanning, replace with a controlled out-of-band interaction server to avoid unintended external requests.
  • ·Fixed versions include Echo 4.9.0+ (upstream) and 4.11.1-1 (Debian); detections should be scoped to instances running exactly 4.8.0 or earlier unfixed releases.

CVSS provenance

nvdv3.19.6CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
osv9.6CRITICAL
vendor_debian9.6CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.