Gotenberg: Server-Side Request Forgery (SSRF) in github.com/gotenberg/gotenberg/v8_CVE-2026-42591

8.2 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Description

Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, the LibreOffice conversion endpoint (/forms/libreoffice/convert) passes uploaded documents directly to LibreOffice without inspecting their content. LibreOffice then fetches any embedded external URLs on its own, completely bypassing the SSRF filters. This vulnerability is fixed in 8.32.0.

Basic Information

ID CVE-2026-42591

Source GitHub_M

Published May 14, 2026 at 15:20

Affected Product

Vendor gotenberg

Product gotenberg

Version < 8.32.0

Affected Versions gotenberg gotenberg < 8.32.0

CWE Classification

CWE-918

References

github.com /gotenberg/gotenberg/security/advisories/GHSA-rm4c-xj6x-49mw

{
    "lastseen": "",
    "description": "Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, the LibreOffice conversion endpoint (/forms/libreoffice/convert) passes uploaded documents directly to LibreOffice without inspecting their content. LibreOffice then fetches any embedded external URLs on its own, completely bypassing the SSRF filters. This vulnerability is fixed in 8.32.0.",
    "published": "2026-05-14T15:20:43.764Z",
    "modified": "2026-05-14T15:20:43.764Z",
    "type": "cve",
    "title": "Gotenberg: Server-Side Request Forgery (SSRF) in github.com/gotenberg/gotenberg/v8",
    "source": "GitHub_M",
    "references": "https://github.com/gotenberg/gotenberg/security/advisories/GHSA-rm4c-xj6x-49mw",
    "id": "CVE-2026-42591",
    "bulletinFamily": "",
    "cwe": [
        "CWE-918"
    ],
    "cvelist": null,
    "sourceData": "gotenberg gotenberg < 8.32.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.2,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "gotenberg",
    "version": "< 8.32.0",
    "vendor": "gotenberg",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}