CVE-2025-69206
Unknown Unknown - Not Provided
SSRF Vulnerability in Hemmelig Webhook URL Allows Internal Access

Publication date: 2025-12-29

Last updated on: 2025-12-29

Assigner: GitHub, Inc.

Description
Hemmelig is a messing app with with client-side encryption and self-destructing messages. Prior to version 7.3.3, a Server-Side Request Forgery (SSRF) filter bypass vulnerability exists in the webhook URL validation of the Secret Requests feature. The application attempts to block internal/private IP addresses but can be bypassed using DNS rebinding or open redirect services. This allows an authenticated user to make the server initiate HTTP requests to internal network resources. Version 7.3.3 contains a patch for the issue.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-29
Last Modified
2025-12-29
Generated
2026-05-07
AI Q&A
2025-12-29
EPSS Evaluated
2026-05-05
NVD
CVE-2025-69206
EUVD
EUVD-2025-205597
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
hemmelig hemmelig *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-918 The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is a Server-Side Request Forgery (SSRF) filter bypass in the webhook URL validation of the Secret Requests feature in Hemmelig app versions prior to 7.3.3. The app tries to block internal/private IP addresses but can be bypassed using DNS rebinding or open redirect services, allowing an authenticated user to make the server send HTTP requests to internal network resources.


How can this vulnerability impact me? :

An attacker who is an authenticated user can exploit this vulnerability to make the server initiate HTTP requests to internal network resources, potentially accessing or interacting with internal systems that are not normally exposed externally. This could lead to unauthorized access or information disclosure within the internal network.


What immediate steps should I take to mitigate this vulnerability?

Upgrade Hemmelig to version 7.3.3 or later, which contains a patch for the SSRF filter bypass vulnerability in the webhook URL validation of the Secret Requests feature.


How can this vulnerability be detected on my network or system? Can you suggest some commands?

This vulnerability can be detected by attempting to exploit the SSRF in the Secret Requests webhook URL feature. You can test by sending webhook URLs that use DNS rebinding domains like 'localtest.me:PORT' or open redirect URLs such as 'httpbin.org/redirect-to?url=http://127.0.0.1:PORT' to see if the server initiates HTTP requests to internal network resources. Detection involves monitoring server logs for outgoing HTTP requests to internal IP addresses or connection errors indicating internal resource access attempts. Commands to assist detection include using curl or similar tools to send crafted webhook URLs and checking server logs. For example, you can use curl to send a webhook request with a URL parameter set to 'http://localtest.me:PORT' or 'http://httpbin.org/redirect-to?url=http://127.0.0.1:PORT'. Additionally, network monitoring tools can be used to detect unexpected outbound requests to internal IP ranges. [1]


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart