PatchSiren cyber security CVE debrief
CVE-2026-45548 Budibase CVE debrief
CVE-2026-45548 is a server-side request forgery (SSRF) vulnerability in Budibase, an open-source low-code platform. The flaw exists in the `processUrlFile` function within `packages/server/src/automations/steps/ai/extract.ts`, which performs direct `fetch(fileUrl)` calls without applying IP blacklist validation. This validation is consistently enforced across all other automation steps but was omitted in this specific AI extraction step. An authenticated attacker can exploit this gap to direct server-side requests to internal network addresses, potentially accessing restricted infrastructure, metadata services, or internal APIs that would otherwise be unreachable from external networks. The vulnerability carries a CVSS 3.1 score of 7.7 (HIGH severity) with the vector AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N, indicating network attack vector, low complexity, low privileges required, no user interaction, changed scope, and high confidentiality impact. The issue was remediated in version 3.34.8. Organizations should upgrade to this version or later and audit automation configurations for unauthorized URL inputs.
- Vendor
- Budibase
- Product
- Unknown
- CVSS
- HIGH 7.7
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-05-27
- Original CVE updated
- 2026-05-27
- Advisory published
- 2026-05-27
- Advisory updated
- 2026-05-27
Who should care
Organizations operating Budibase instances with untrusted or partially trusted authenticated users; security teams managing low-code platforms with automation capabilities; cloud infrastructure administrators where Budibase servers have access to internal metadata services or restricted network segments; compliance teams addressing SSRF risks in application security programs
Technical summary
The vulnerability resides in `packages/server/src/automations/steps/ai/extract.ts` where `processUrlFile` executes `fetch(fileUrl)` without IP blacklist validation. Unlike other automation steps that enforce this validation, the AI extraction step permits arbitrary URL fetching. This allows authenticated users to supply URLs resolving to internal network addresses (e.g., 169.254.169.254, 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16), triggering server-side requests that bypass network perimeter controls. The attack requires valid authentication credentials but no user interaction, with changed scope indicating impact beyond the vulnerable component.
Defensive priority
high
Recommended defensive actions
- Upgrade Budibase to version 3.34.8 or later to remediate the missing IP blacklist validation in the AI extraction automation step
- Review automation configurations and audit logs for suspicious URL inputs targeting internal IP ranges or metadata endpoints
- Implement network segmentation to restrict Budibase server egress to authorized destinations only
- Validate that custom automation steps or plugins do not introduce similar unvalidated fetch implementations
- Monitor for anomalous outbound connections from Budibase application servers to internal network addresses
Evidence notes
Vulnerability description sourced from official CVE record and NVD entry. Technical details confirmed via GitHub Security Advisory GHSA-rpj4-7x2v-wjrf. Fix version 3.34.8 referenced in advisory. CVSS vector and score from NVD metadata. CWE-918 (Server-Side Request Forgery) classification from advisory source.
Official resources
2026-05-27