Critical severityNVD Advisory· Published May 7, 2022· Updated Apr 23, 2025
Charm vulnerable to server-side request forgery (SSRF)
CVE-2022-29180
Description
A vulnerability in which attackers could forge HTTP requests to manipulate the charm data directory to access or delete anything on the server. This has been patched and is available in release v0.12.1. We recommend that all users running self-hosted charm instances update immediately. This vulnerability was found in-house and we haven't been notified of any potential exploiters.
Additional notes * Encrypted user data uploaded to the Charm server is safe as Charm servers cannot decrypt user data. This includes filenames, paths, and all key-value data. * Users running the official Charm Docker images are at minimal risk because the exploit is limited to the containerized filesystem.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/charmbracelet/charmGo | >= 0.9.0, < 0.12.1 | 0.12.1 |
Affected products
2- Range: >= 0.9.0, < 0.12.1
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-4wpp-w5r4-7v5vghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-29180ghsaADVISORY
- github.com/charmbracelet/charm/commit/3c90668f955c7ce5ef721e4fc9faee7053232fd3ghsax_refsource_MISCWEB
- github.com/charmbracelet/charm/security/advisories/GHSA-4wpp-w5r4-7v5vghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.