Your submission was sent successfully! Close

CVE-2022-40083

Published: 28 September 2022

Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery (SSRF).

Priority

Medium

CVSS 3 base score: 9.6

Status

Package Release Status
golang-github-labstack-echo
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Does not exist

jammy Needs triage

kinetic Needs triage

trusty Ignored
(out of standard support)
upstream Needs triage

xenial Ignored
(out of standard support)
golang-github-labstack-echo.v2
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Needs triage

jammy Needs triage

kinetic Needs triage

trusty Ignored
(out of standard support)
upstream Needs triage

xenial Ignored
(out of standard support)
golang-github-labstack-echo.v3
Launchpad, Ubuntu, Debian
bionic Does not exist

focal Needs triage

jammy Needs triage

kinetic Needs triage

trusty Ignored
(out of standard support)
upstream Needs triage

xenial Ignored
(out of standard support)
golang-github-labstack-gommon
Launchpad, Ubuntu, Debian
bionic Needs triage

focal Needs triage

jammy Needs triage

kinetic Needs triage

trusty Ignored
(out of standard support)
upstream Needs triage

xenial Ignored
(out of standard support)