CVE-2022-31132 HIGH

CVE-2022-31132: Unauthenticated SSRF in 3rd party module "cerdic/csstidy"

Vendor Nextcloud
Product security-advisories
Weakness CWE-918 · SSRF
Published August 4, 2022
Last update April 23, 2025
View on NVD All CVEs

CVSS base score

8.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

What the vulnerability does

01Description

Nextcloud Mail is an email application for the nextcloud personal cloud product. Affected versions shipped with a CSS minifier on the path `./vendor/cerdic/css-tidy/css_optimiser.php`. Access to the minifier is unrestricted and access may lead to Server-Side Request Forgery (SSRF). It is recommendet to upgrade to Mail 1.12.7 or Mail 1.13.6. Users unable to upgrade may manually delete the file located at `./vendor/cerdic/css-tidy/css_optimiser.php`

Key dates

02Disclosure timeline

August 4, 2022 CVE published
April 23, 2025 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-25235 Omnissa Secure Email Gateway (SEG) updates address Server-Side Request Forgery (SSRF) vulnerability CVE-2025-10453 PilotGaea Technologies|O'View MapServer - Server-Side Request Forgery CVE-2021-29102 There is a Server-Side Request Forgery (SSRF) vulnerability in Esri ArcGIS Server Manager version 10.8.1 and below. CVE-2023-3577 Limited blind SSRF to localhost/intranet in interactive dialog implementation CVE-2026-41688 Incomplete fix for CVE-2026-33399: SSRF in Wallos