CVE-2026-0613

{"id": "CVE-2026-0613", "cveTags": [], "metrics": {"ssvcV203": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "ssvcData": {"id": "CVE-2026-0613", "role": "CISA Coordinator", "options": [{"exploitation": "none"}, {"automatable": "yes"}, {"technicalImpact": "partial"}], "version": "2.0.3", "timestamp": "2026-01-16T21:41:27.699155Z"}}], "cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "affected": [{"source": "cret@cert.org", "affectedData": [{"vendor": "TheLibrarian", "product": "TheLibrarian.io", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "1.0"}]}]}], "published": "2026-01-16T13:16:11.780", "references": [{"url": "https://mindgard.ai/blog/thelibrarian-ios-ai-security-disclosure", "tags": ["Third Party Advisory"], "source": "cret@cert.org"}, {"url": "https://thelibrarian.io/", "tags": ["Product"], "source": "cret@cert.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-918"}]}], "descriptions": [{"lang": "en", "value": "The Librarian contains an internal port scanning vulnerability, facilitated by the `web_fetch` tool, which can be used with SSRF-style behavior to perform GET requests to internal IP addresses and services, enabling scanning of the Hertzner cloud environment that TheLibrarian uses. The vendor has fixed the vulnerability in all affected versions."}, {"lang": "es", "value": "El Librarian contiene una vulnerabilidad interna de escaneo de puertos, facilitada por la herramienta 'web_fetch', que puede ser utilizada con un comportamiento de tipo SSRF para realizar solicitudes GET a direcciones IP y servicios internos, permitiendo el escaneo del entorno de nube de Hertzner que utiliza TheLibrarian. El proveedor ha corregido la vulnerabilidad en todas las versiones afectadas."}], "lastModified": "2026-06-17T10:11:05.050", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:thelibrarian:the_librarian:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE8F0743-241A-47D8-B16A-8E3B94C6ABB8"}], "operator": "OR"}]}], "sourceIdentifier": "cret@cert.org"}