Description
Starlette is a lightweight ASGI framework/toolkit. In versions 1.0.1 and earlier, StaticFiles on Windows is vulnerable to SSRF. An UNC path such as \\attacker.com\share can cause os.path.realpath to initiate an outbound SMB connection before the path is rejected, exposing the service account’s NTLMv2 credentials for offline cracking or relay even though the HTTP response is only a 404. The issue affects default follow_symlink=False deployments, including frameworks built on Starlette such as FastAPI; POSIX systems and follow_symlink=True are unaffected. The issue is fixed in 1.1.0.
Published: 2026-06-17
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Starlette ASGI framework’s StaticFiles component on Windows can be tricked by an attacker who supplies a UNC path such as \\attacker.com\share. The component calls os.path.realpath before rejecting the path, which triggers an outbound SMB connection carrying the HTTP service account’s NTLMv2 credentials. Even though the HTTP response is a 404, the credentials are exposed, allowing an attacker to obtain them for offline cracking or relay. This enables credential theft over the network.

Affected Systems

The flaw affects Starlette versions 1.0.1 and earlier when deployed on Windows with the default follow_symlink=False setting. Frameworks built on Starlette, such as FastAPI, inherit the vulnerability. POSIX platforms and deployments that enable follow_symlink=True are not impacted. The issue was resolved in Starlette 1.1.0.

Risk and Exploitability

The CVSS base score of 7.5 indicates high severity, while the EPSS score of less than 1% suggests low exploitation likelihood. The vulnerability is not listed in the CISA KEV catalog. An attacker would need network access to the application, and the app must run on Windows and serve static files that could resolve UNC paths. Once triggered, credentials are leaked before the request is denied.

Generated by OpenCVE AI on June 18, 2026 at 19:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Starlette to version 1.1.0 or later, which removes the file‑system resolution issue.
  • If an upgrade is not possible, set follow_symlink=True on Windows deployments or otherwise reconfigure the application to reject UNC paths before they reach os.path.realpath.
  • Restrict the service account used to run the application to the least privileges necessary and monitor outbound SMB connections for anomalous activity.

Generated by OpenCVE AI on June 18, 2026 at 19:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-wqp7-x3pw-xc5r Starlette: SSRF and NTLM credential theft via UNC paths in StaticFiles on Windows
History

Thu, 18 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Kludex
Kludex starlette
Vendors & Products Kludex
Kludex starlette

Thu, 18 Jun 2026 16:45:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Important

Thu, 18 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Description Starlette is a lightweight ASGI framework/toolkit. In versions 1.0.1 and earlier, StaticFiles on Windows is vulnerable to SSRF. An UNC path such as \\attacker.com\share can cause os.path.realpath to initiate an outbound SMB connection before the path is rejected, exposing the service account’s NTLMv2 credentials for offline cracking or relay even though the HTTP response is only a 404. The issue affects default follow_symlink=False deployments, including frameworks built on Starlette such as FastAPI; POSIX systems and follow_symlink=True are unaffected. The issue is fixed in 1.1.0.
Title Starlette: SSRF and NTLM credential theft via UNC paths in StaticFiles on Windows
Weaknesses CWE-918
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Subscriptions

Kludex Starlette
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-17T19:31:45.487Z

Reserved: 2026-05-22T20:57:10.976Z

Link: CVE-2026-48818

cve-icon Vulnrichment

Updated: 2026-06-17T19:31:37.575Z

cve-icon NVD

No data.

cve-icon Redhat

Severity : Important

Publid Date: 2026-06-17T17:50:12Z

Links: CVE-2026-48818 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T20:30:05Z

Weaknesses
  • CWE-918

    Server-Side Request Forgery (SSRF)