5.7

CVSS Score

3.1

Basic Information

CVE ID

CVE-2024-37895

GHSA ID

GHSA-p36r-qxgx-jq2v

EPSS Score

0.11306%

CWE

CWE-200

Published

6/17/2024

Updated

6/17/2024

KEV Status

Technology

JavaScript

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2024-37895

CVE-2024-37895:
Lobe Chat API Key Leak

Summary

If an attacker can successfully authenticate through SSO/Access Code, they can obtain the real backend API Key by modifying the base URL to their own attack URL on the frontend and setting up a server-side request.

Details

The attack process is described above.

PoC

Frontend:

Pass basic authentication (SSO/Access Code).
Set the Base URL to a private attack address.
Configure the request method to be a server-side request.
At the self-set attack address, retrieve the API Key information from the request headers.

Backend:

The LobeChat version allows setting the Base URL.
There is no outbound traffic whitelist.

Impact

All community version LobeChat users using SSO/Access Code authentication, tested on version 0.162.13.

(GitHub Advisory)

5.7

CVSS Score

3.1

Basic Information

CVE ID

CVE-2024-37895

GHSA ID

GHSA-p36r-qxgx-jq2v

EPSS Score

0.11306%

CWE

CWE-200

Published

6/17/2024

Updated

6/17/2024

KEV Status

Technology

JavaScript

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
@lobehub/chat	npm	< 0.162.25	0.162.25

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability combines two critical failures: 1) Unrestricted base URL modification allows SSRF (CWE-918), and 2) Sensitive API keys are included in requests to attacker-controlled endpoints (CWE-200). The first function likely handles user input for base URL without validation(), while the second function would be responsible for attaching sensitive headers to outbound requests. These would work in tandem to enable the described attack flow where authenticated users can exfiltrate credentials via modified endpoints.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

### Summ*ry I* *n *tt**k*r **n su***ss*ully *ut**nti**t* t*rou** SSO/****ss *o**, t**y **n o*t*in t** r**l ***k*n* *PI K*y *y mo*i*yin* t** **s* URL to t**ir own *tt**k URL on t** *ront*n* *n* s*ttin* up * s*rv*r-si** r*qu*st. ### **t*ils T** *tt*

Reasoning

T** vuln*r**ility *om*in*s two *riti**l **ilur*s: *) Unr*stri*t** **s* URL mo*i*i**tion *llows SSR* (*W*-***), *n* *) S*nsitiv* *PI k*ys *r* in*lu*** in r*qu*sts to *tt**k*r-*ontroll** *n*points (*W*-***). T** *irst `*un*tion` lik*ly **n*l*s us*r inp

5.7

Basic Information

Concerned about an active attack path?

CVE-2024-37895: Lobe Chat API Key Leak

Summary

Details

PoC

Impact

5.7

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2024-37895:
Lobe Chat API Key Leak

Vulnerability Intelligence
Miggo AI