CVE-2023-42439

Public Exploit
GeoNode SSRF Bypass to return internal host data

Description

GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data. A SSRF vulnerability exists starting in version 3.2.0, bypassing existing controls on the software. This can allow a user to request internal services for a full read SSRF, returning any data from the internal network. The application is using a whitelist, but the whitelist can be bypassed. The bypass will trick the application that the first host is a whitelisted address, but the browser will use `@` or `%40` as a credential to the host geoserver on port 8080, this will return the data to that host on the response. Version 4.1.3.post1 is the first available version that contains a patch.

Category

7.5
CVSS
Severity: High
CVSS 3.1 •
EPSS 0.07%
Third-Party Advisory github.com
Affected: GeoNode geonode
Published at:
Updated at:

References

Link Tags
https://github.com/GeoNode/geonode/security/advisories/GHSA-pxg5-h34r-7q8p third party advisory exploit
https://github.com/GeoNode/geonode/commit/79ac6e70419c2e0261548bed91c159b54ff35b8d patch
https://github.com/GeoNode/geonode/releases/tag/4.1.3 release notes

Frequently Asked Questions

What is the severity of CVE-2023-42439?
CVE-2023-42439 has been scored as a high severity vulnerability.
How to fix CVE-2023-42439?
To fix CVE-2023-42439, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-42439 being actively exploited in the wild?
It is possible that CVE-2023-42439 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-42439?
CVE-2023-42439 affects GeoNode geonode.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.