SCA: security update for rsshub (GHSA-3p3p-cgj7-vgw3)

medium Tenable Self-Hosted Container Security Plugin ID 409606

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- RSSHub is an open source RSS feed generator. Prior to version 1.0.0-master.a429472, RSSHub allows remote
attackers to use the server as a proxy to send HTTP GET requests to arbitrary targets and retrieve
information in the internal network or conduct Denial-of-Service (DoS) attacks. The attacker can send
malicious requests to a RSSHub server, to make the server send HTTP GET requests to arbitrary destinations
and see partial responses. This may lead to leak the server IP address, which could be hidden behind a
CDN; retrieving information in the internal network, e.g. which addresses/ports are accessible, the titles
and meta descriptions of HTML pages; and denial of service amplification. The attacker could request the
server to download some large files, or chain several SSRF requests in a single attacker request.
(CVE-2024-27927)

See Also

https://github.com/advisories/GHSA-3p3p-cgj7-vgw3

Plugin Details

Severity: Medium

ID: 409606

Version: Revision 1.10

Type: Local

Family: SCA Checks

Published: 1/23/2025

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 2.1

Percentile: 7.51

Vendor

Vendor Severity: Medium

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P

CVSS Score Source: CVE-2024-27927

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.9

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/6/2024

Vulnerability Publication Date: 3/6/2024

Reference Information

CVE: CVE-2024-27927

cwe: CWE-918