cbcvebase.
CVE-2024-32964
published 2024-05-14

CVE-2024-32964: Lobe Chat is a chatbot framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Prior to 0.150.6, lobe-chat had an…

PriorityP270critical9CVSS 3.1
AVNACLPRHUINSCCHILAH
EXPLOIT
EPSS
52.96%
98.8th percentile
Lobe Chat is a chatbot framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Prior to 0.150.6, lobe-chat had an unauthorized Server-Side Request Forgery vulnerability in the /api/proxy endpoint. An attacker can construct malicious requests to cause Server-Side Request Forgery without logging in, attack intranet services, and leak sensitive information.

Affected

5 ranges
VendorProductVersion rangeFixed in
lobehubchat>= 0 < 0.150.60.150.6
lobehubchat>= 0 < 1.19.131.19.13
lobehublobe-chat< 1.19.131.19.13
lobehublobe_chat< 0.150.60.150.6
lobehublobehub>= 0 < 2.1.572.1.57

Detection & IOCsextracted from sources · hover to see the quote

url/api/proxy
  • Monitor for unauthenticated requests to the /api/proxy endpoint in Lobe Chat, which may indicate SSRF exploitation attempts targeting internal network services.
  • Look for Interactsh callback domains in outbound traffic originating from the Lobe Chat server process, which may indicate active SSRF probing or exploitation.
  • ·The SSRF vulnerability requires no authentication, meaning any unauthenticated network access to the /api/proxy endpoint is sufficient for exploitation. Ensure the endpoint is not exposed to untrusted networks.
  • ·Versions prior to 0.150.6 are affected. Upgrade to 0.150.6 or later to remediate.

CVSS provenance

nvdv3.19.0CRITICALCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:H
ghsa9.0CRITICAL
osv9.0CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.