CVE-2025-58179 HIGH

CVE-2025-58179: Astro Cloudflare adapter is vulnerable to Server-Side Request Forgery via /_image endpoint

Vendor Withastro

Product astro

Weakness CWE-918 · SSRF

Published September 4, 2025

Last update September 5, 2025

View on NVD All CVEs

CVSS base score

7.2/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality Low

Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

What the vulnerability does

01Description

Astro is a web framework for content-driven websites. Versions 11.0.3 through 12.6.5 are vulnerable to SSRF when using Astro's Cloudflare adapter. When configured with output: 'server' while using the default imageService: 'compile', the generated image optimization endpoint doesn't check the URLs it receives, allowing content from unauthorized third-party domains to be served. a A bug in impacted versions of the @astrojs/cloudflare adapter for deployment on Cloudflare’s infrastructure, allows an attacker to bypass the third-party domain restrictions and serve any content from the vulnerable origin. This issue is fixed in version 12.6.6.

Key dates

02Disclosure timeline

September 4, 2025 CVE published

September 5, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-58179

Related vulnerabilities

CVE-2025-58179: Astro Cloudflare adapter is vulnerable to Server-Side Request Forgery via /_image endpoint

01Description

02Disclosure timeline

03References

04Related CVE