CVE-2026-42336 PUBLISHED

MaxKB: SSRF Bypass via DNS Rebinding in MaxKB OSS URL Fetch

Assigner: GitHub_M
Reserved: 26.04.2026 Published: 26.05.2026 Updated: 26.05.2026

MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and prior are vulnerable to a server-side request forgery (SSRF) bypass in the OSS file service URL fetch functionality due to inconsistent DNS resolution between validation and actual request execution, allowing attackers to access internal network services. This vulnerability is fixed in 2.8.1.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N
CVSS Score: 5.1

Product Status

Vendor 1Panel-dev
Product MaxKB
Versions
  • Version < 2.8.1 is affected

References

Problem Types

  • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition CWE
  • CWE-918: Server-Side Request Forgery (SSRF) CWE