Security Advisory

CVE-2026-0613

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-16 12:46:02

Last updated 2026-01-16 21:41:53

Assigner certcc

State PUBLISHED

Description

The Librarian contains an internal port scanning vulnerability, facilitated by the `web_fetch` tool, which can be used with SSRF-style behavior to perform GET requests to internal IP addresses and services, enabling scanning of the Hertzner cloud environment that TheLibrarian uses. The vendor has fixed the vulnerability in all affected versions.

← Browse all CVEs View on cve.org ↗