Skip to main content

Siyuan CVE-2026-32110

HIGH
Server-Side Request Forgery (SSRF) (CWE-918)
2026-03-11 security-advisories@github.com GHSA-56cv-c5p2-j2wg
SSRF Siyuan Suse
8.3
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
8.3 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
SUSE
HIGH
qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
Low

Lifecycle Timeline

3
Patch released
Mar 31, 2026 - 21:13 nvd
Patch available
Analysis Generated
Mar 12, 2026 - 22:07 vuln.today
CVE Published
Mar 11, 2026 - 21:16 nvd
HIGH 8.3

DescriptionGitHub Advisory

SiYuan is a personal knowledge management system. Prior to 3.6.0, the /api/network/forwardProxy endpoint allows authenticated users to make arbitrary HTTP requests from the server. The endpoint accepts a user-controlled URL and makes HTTP requests to it, returning the full response body and headers. There is no URL validation to prevent requests to internal networks, localhost, or cloud metadata services. This vulnerability is fixed in 3.6.0.

AnalysisAI

High severity vulnerability in SiYuan Note. # The /api/network/forwardProxy endpoint allows authenticated users to make arbitrary HTTP requests from the server. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate to SiYuan instance
Delivery
Call /api/network/forwardProxy endpoint
Exploit
Supply internal network URL
Execution
Server makes unvalidated HTTP request
Impact
Access metadata service or internal resources
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Authenticated user account on SiYuan prior to version 3.6.0 with network access to the /api/network/forwardProxy endpoint. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Severity: High (8.3/10.0) Very low exploitation probability (EPSS: 0.00038, 11.1th percentile) Remotely exploitable with low-privilege access — any authenticated user could exploit this No patch confirmed yet — monitor vendor channels for updates and consider mitigations Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An authenticated attacker with low-level access can exploit this vulnerability remotely to escalate privileges or access unauthorized resources.
Remediation Security advisories: - https://github.com/siyuan-note/siyuan/security/advisories/GHSA-56cv-c5p2-j2wg Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Identify all SiYuan Note deployments and assess user access logs for suspicious proxy requests. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: High

Share

CVE-2026-32110 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy