Metabase vulnerable to circumvention of local link access protection in GeoJson endpoint
Metabase is a business intelligence and embedded analytics tool. Versions prior to v0.52.16.4, v1.52.16.4, v0.53.8, and v1.53.8 are vulnerable to circumvention of local link access protection in GeoJson endpoint. Self hosted Metabase instances that are using the GeoJson feature could be potentially impacted if their Metabase is colocated with other unsecured resources. This is fixed in v0.52.16.4, v1.52.16.4, v0.53.8, and v1.53.8. Migrating to Metabase Cloud or redeploying Metabase in a dedicated subnet with strict outbound port controls is an available workaround.
Problem Types
| Type | CWE ID | Description |
|---|
| CWE | CWE-59 | CWE-59: Improper Link Resolution Before File Access ('Link Following') |
Type: CWE
Description: CWE-59: Improper Link Resolution Before File Access ('Link Following')
Metrics
| Version | Base score | Base severity | Vector |
|---|
| 4.0 | 2.1 | LOW | CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N |
Version: 4.0
Base score: 2.1
Base severity: LOW
Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N