Budibase versions prior to 3.33.4 are vulnerable to Server-Side Request Forgery (SSRF). The SSRF protection is ineffective by default, allowing unauth...
Description
Budibase versions prior to 3.33.4 are vulnerable to Server-Side Request Forgery (SSRF). The SSRF protection is ineffective by default, allowing unauthenticated requests to internal services.
AI Analyst Comment
Remediation
Update Unknown Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: Budibase
PRODUCT: Budibase
AFFECTED_VERSIONS: Prior to version 3.33.4
---END_METADATA---
Description Summary:
Budibase versions prior to 3.33.4 are vulnerable to Server-Side Request Forgery (SSRF). The SSRF protection is ineffective by default, allowing unauthenticated requests to internal services.
Executive Summary:
Budibase is vulnerable to a critical unauthenticated SSRF flaw because its internal IP blacklist protection is disabled by default in official deployment configurations.
Vulnerability Details
CVE-ID: CVE-2026-31818
Affected Software: Budibase Budibase
Affected Versions: Prior to version 3.33.4
Vulnerability: A Server-Side Request Forgery (SSRF) exists in the REST datasource connector. The platform's protection mechanism is ineffective because the
BLACKLIST_IPSenvironment variable is empty by default, causing the security check to return false and allow all requests to internal resources.Business Impact
Attackers can use the Budibase server as a proxy to scan and attack internal network services that are not otherwise reachable from the internet. The CVSS score of 9.6 highlights the high risk of internal infrastructure exposure, which could lead to secondary compromises of databases or internal management tools.
Remediation Plan
Immediate Action: Update Budibase to version 3.33.4 and ensure that the
BLACKLIST_IPSenvironment variable is correctly populated with internal and reserved IP ranges.Proactive Monitoring: Review outbound network logs from the Budibase server for requests directed at internal IP addresses (e.g., 10.x.x.x, 192.168.x.x).
Compensating Controls: Use network-level egress filtering to prevent the Budibase container from initiating connections to sensitive internal network segments.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Apr 3, 2026, there is no public information indicating active exploitation of this vulnerability. However, the "fail-open" nature of the protection mechanism makes this highly exploitable in standard installations.
Analyst Recommendation
This SSRF vulnerability effectively neutralizes the network perimeter for any organization running Budibase. It is imperative to update to version 3.33.4 immediately. Furthermore, administrators should adopt a "deny-by-default" egress policy for application containers to mitigate the impact of similar SSRF flaws in the future.