Critical severityNVD Advisory· Published Sep 28, 2022· Updated May 21, 2025
CVE-2022-40083
CVE-2022-40083
Description
Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be leveraged by attackers to cause a Server-Side Request Forgery (SSRF).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/labstack/echo/v4Go | < 4.9.0 | 4.9.0 |
Affected products
2- Labstack/Echodescription
Patches
Vulnerability mechanics
References
8- github.com/advisories/GHSA-crxj-hrmp-4rwfghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-40083ghsaADVISORY
- github.com/labstack/echo/commit/0ac4d74402391912ff6da733bb09fd4c3980b4e1ghsaWEB
- github.com/labstack/echo/issues/2259ghsax_refsource_MISCWEB
- github.com/labstack/echo/pull/2260ghsaWEB
- github.com/labstack/echo/pull/2260/commits/3154abd1401554fe4d1c09ec550506d8625fc042ghsaWEB
- github.com/labstack/echo/releases/tag/v4.9.0ghsaWEB
- pkg.go.dev/vuln/GO-2022-1031ghsaWEB
News mentions
0No linked articles in our index yet.