{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-34981", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-31T19:38:31.617Z", "datePublished": "2026-04-06T16:19:13.887Z", "dateUpdated": "2026-04-06T18:45:41.844Z"}, "containers": {"cna": {"title": "whisperX REST API: SSRF in download_from_url() \u2014 URL validation happens after HTTP request, extension bypass via .mp3", "problemTypes": [{"descriptions": [{"cweId": "CWE-918", "lang": "en", "description": "CWE-918: Server-Side Request Forgery (SSRF)", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/pavelzbornik/whisperX-FastAPI/security/advisories/GHSA-6rc7-r867-c635", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/pavelzbornik/whisperX-FastAPI/security/advisories/GHSA-6rc7-r867-c635"}, {"name": "https://github.com/pavelzbornik/whisperX-FastAPI/issues/256", "tags": ["x_refsource_MISC"], "url": "https://github.com/pavelzbornik/whisperX-FastAPI/issues/256"}, {"name": "https://github.com/pavelzbornik/whisperX-FastAPI/commit/ef78fe2001deede5354031e4200d41c6a7e8cbfc", "tags": ["x_refsource_MISC"], "url": "https://github.com/pavelzbornik/whisperX-FastAPI/commit/ef78fe2001deede5354031e4200d41c6a7e8cbfc"}], "affected": [{"vendor": "pavelzbornik", "product": "whisperX-FastAPI", "versions": [{"version": ">= 0.3.1, < 0.6.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-06T16:19:13.887Z"}, "descriptions": [{"lang": "en", "value": "The whisperX API is a tool for enhancing and analyzing audio content. From 0.3.1 to 0.5.0, FileService.download_from_url() in app/services/file_service.py calls requests.get(url) with zero URL validation. The file extension check occurs AFTER the HTTP request is already made, and can be bypassed by appending .mp3 to any internal URL. The /speech-to-text-url endpoint is unauthenticated. This vulnerability is fixed in 0.6.0."}], "source": {"advisory": "GHSA-6rc7-r867-c635", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-06T18:45:23.314461Z", "id": "CVE-2026-34981", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-06T18:45:41.844Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-34981", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-06T18:45:23.314461Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-06T18:45:35.788Z"}}], "cna": {"title": "whisperX REST API: SSRF in download_from_url() \u2014 URL validation happens after HTTP request, extension bypass via .mp3", "source": {"advisory": "GHSA-6rc7-r867-c635", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "pavelzbornik", "product": "whisperX-FastAPI", "versions": [{"status": "affected", "version": ">= 0.3.1, < 0.6.0"}]}], "references": [{"url": "https://github.com/pavelzbornik/whisperX-FastAPI/security/advisories/GHSA-6rc7-r867-c635", "name": "https://github.com/pavelzbornik/whisperX-FastAPI/security/advisories/GHSA-6rc7-r867-c635", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/pavelzbornik/whisperX-FastAPI/issues/256", "name": "https://github.com/pavelzbornik/whisperX-FastAPI/issues/256", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/pavelzbornik/whisperX-FastAPI/commit/ef78fe2001deede5354031e4200d41c6a7e8cbfc", "name": "https://github.com/pavelzbornik/whisperX-FastAPI/commit/ef78fe2001deede5354031e4200d41c6a7e8cbfc", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "The whisperX API is a tool for enhancing and analyzing audio content. From 0.3.1 to 0.5.0, FileService.download_from_url() in app/services/file_service.py calls requests.get(url) with zero URL validation. The file extension check occurs AFTER the HTTP request is already made, and can be bypassed by appending .mp3 to any internal URL. The /speech-to-text-url endpoint is unauthenticated. This vulnerability is fixed in 0.6.0."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-918", "description": "CWE-918: Server-Side Request Forgery (SSRF)"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-06T16:19:13.887Z"}}}, "cveMetadata": {"cveId": "CVE-2026-34981", "state": "PUBLISHED", "dateUpdated": "2026-04-06T18:45:41.844Z", "dateReserved": "2026-03-31T19:38:31.617Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-04-06T16:19:13.887Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The whisperX API is a tool for enhancing and analyzing audio content. From 0.3.1 to 0.5.0, FileService.download_from_url() in app/services/file_service.py calls requests.get(url) with zero URL validation. The file extension check occurs AFTER the HTTP request is already made, and can be bypassed by appending .mp3 to any internal URL. The /speech-to-text-url endpoint is unauthenticated. This vulnerability is fixed in 0.6.0."}], "id": "CVE-2026-34981", "lastModified": "2026-04-06T17:17:11.710", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-04-06T17:17:11.710", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/pavelzbornik/whisperX-FastAPI/commit/ef78fe2001deede5354031e4200d41c6a7e8cbfc"}, {"source": "security-advisories@github.com", "url": "https://github.com/pavelzbornik/whisperX-FastAPI/issues/256"}, {"source": "security-advisories@github.com", "url": "https://github.com/pavelzbornik/whisperX-FastAPI/security/advisories/GHSA-6rc7-r867-c635"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-918"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0.3.1,0.6.0)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "whisperX-FastAPI", "source": "cna", "vendor": "pavelzbornik"}, "product": "whisperx-fastapi", "vendor": "pavelzbornik"}], "analysis": {"en": {"generated_at": "2026-04-06T19:36:45.095185+00:00", "value": {"mitigation_remediation": ["Upgrade whisperX\u2011FastAPI to version 0.6.0 or later, where the SSRF issue has been fixed.", "If an upgrade is not immediately possible, block outbound traffic from the whisperX service to internal IP ranges or use firewall rules to restrict outbound requests to only trusted addresses.", "Restrict or disable the /speech\u2011to\u2011text\u2011url endpoint, or implement authentication so that only authorized users can trigger download_from_url calls.", "Monitor the application logs for anomalous outbound requests originating from whisperX, and alert on any unexpected destinations."], "summary": {"action": "Apply Patch", "impact": "Server\u2011side request forgery allowing traversal of internal networks and data exposure"}, "threat_synthesis": {"affected_systems": "The affected product is the whisperX\u2011FastAPI application maintained by pavelzbornik. Versions starting at 0.3.1 and up through 0.5.0 contain the vulnerable download_from_url implementation. All earlier releases are unaffected, and the issue was addressed in 0.6.0. Users running any of these vulnerable versions are required to update to 0.6.0 or later to eliminate the backend request vulnerability.", "description_and_impact": "The vulnerability lies in the download_from_url function of whisperX's FileService. The function makes an HTTP GET request to a user\u2011provided URL without performing any validation first. Only after the request succeeds does the code check the file extension, and that check can be bypassed by appending .mp3 to the target URL. This flaw permits an attacker to trigger outgoing HTTP requests from the server to arbitrary destinations, exposing internal IP addresses or resources that are otherwise inaccessible from the outside. The flaw is essentially a server\u2011side request forgery (SSRF) that could be used to harvest sensitive data, scan internal services, or exfiltrate data.", "risk_and_exploitability": "The CVSS base score of 5.8 indicates a medium severity. No EPSS score is reported, and the vulnerability has not been listed in the CISA KEV catalog. Because the exposed /speech\u2011to\u2011text\u2011url endpoint is unauthenticated, an attacker can directly craft malicious requests from outside the network, making the vector local API access with no prior compromise. An internal host that hosts the whisperX service can initiate outbound traffic to any address, including private network segments, thereby bypassing typical network perimeter defenses. The combination of medium CVSS, lack of exploitation data, and open access creates a non\u2011trivial risk for organizations that deploy the vulnerable versions without additional network controls."}}}}, "created": "2026-04-06T20:13:43.451607+00:00", "updated": "2026-04-06T21:31:38.972542+00:00", "vendors": ["pavelzbornik", "pavelzbornik$PRODUCT$whisperx-fastapi"]}