CVE-2026-45082

HIGH 7.6

Karakeep has a SSRF Protection Bypass via Redirect Handling

CVSS Score

7.6

EPSS Score

0.0%

EPSS Percentile

0th

Karakeep is a elf-hostable bookmark-everything app. A Server-Side Request Forgery (SSRF) protection bypass vulnerability was identified in versions prior to 0.32.0 affecting redirect-following processing components. Although the application implements protections intended to prevent requests toward internal/private network destinations, these protections could be bypassed through crafted HTTP redirect chains. By leveraging attacker-controlled redirects, an authenticated user could cause vulnerable application components to initiate requests toward internally reachable Docker network services accessible from the application environment. The issue affected multiple processing paths, including crawler-related functionality and video download processing flows. Version 0.32.0 contains a patch.

CWE	CWE-918
Vendor	karakeep-app
Product	karakeep
Published	May 26, 2026
Last Updated	May 26, 2026

Stay Ahead of the Next One

Get instant alerts for karakeep-app karakeep

Be the first to know when new high vulnerabilities affecting karakeep-app karakeep are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

Low

Availability

Low

Affected Versions

karakeep-app / karakeep

< 0.32.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/karakeep-app/karakeep/security/advisories/GHSA-g647-327m-79g9