CVE-2026-55412
Last modified
CVE-2026-55412 is a high-severity vulnerability rated 8.3/10 on the CVSS scale. ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, there's an SSRF in the RestAPI data source component. EPSS estimates a 0.19% chance of exploitation in the next 30 days.
Description
ToolJet is the open-source foundation am AI-native platform for building and deploying internal tools, workflows and AI agents. Prior to 3.20.178-lts, there's an SSRF in the RestAPI data source component. The RestAPI data source executes HTTP requests server-side, and its private IP filter only checks the hostname string — not the resolved IP. DNS names like 169.254.169.254.nip.io resolve to the Azure IMDS link-local address and bypass the filter entirely. This allows any authenticated user (free tier) to steal Azure managed identity tokens for the AKS production cluster. This vulnerability is fixed in 3.20.178-lts.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Weakness Enumeration
References
Timeline
- Published
- Last Modified
- Status
- Deferred
Frequently Asked Questions
What is CVE-2026-55412?
How severe is CVE-2026-55412?
How do I fix CVE-2026-55412?
Are you affected by CVE-2026-55412?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST