AI description
Automated description summarized from trusted sources.
CVE-2024-34351 is a Server-Side Request Forgery (SSRF) vulnerability found in Next.js Server Actions. It allows attackers to make requests that appear to originate from the Next.js application server. The vulnerability can be exploited if Next.js is running self-hosted, utilizes Server Actions, and performs redirects to relative paths starting with '/'. By modifying the Host header, an attacker can make arbitrary requests to URLs and read the full HTTP response, potentially accessing internal networks or metadata IPs. The vulnerability is patched in Next.js version 14.1.1.
- Description
- Next.js is a React framework that can provide building blocks to create web applications. A Server-Side Request Forgery (SSRF) vulnerability was identified in Next.js Server Actions. If the `Host` header is modified, and the below conditions are also met, an attacker may be able to make requests that appear to be originating from the Next.js application server itself. The required conditions are 1) Next.js is running in a self-hosted manner; 2) the Next.js application makes use of Server Actions; and 3) the Server Action performs a redirect to a relative path which starts with a `/`. This vulnerability was fixed in Next.js `14.1.1`.
- Source
- security-advisories@github.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
- security-advisories@github.com
- CWE-918
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
5