Impact
An unauthenticated user can submit arbitrary JavaScript to the /execute_js endpoint of the Docker API server, where it is run in the server's browser context when the --disable-web-security flag is active. This direct code execution can lead to server‑side request forgery and other malicious actions, exposing internal services and compromising the confidentiality, integrity, and availability of the hosting system.
Affected Systems
Crawl4AI applications before version 0.8.7 are susceptible. The affected component is the Docker API server's /execute_js endpoint, which processes any JavaScript payload sent by an external client.
Risk and Exploitability
With a CVSS score of 9.2, the vulnerability is classified as critical. Because the endpoint is reachable over the network, an attacker can remotely trigger JavaScript execution without requiring authentication. While the EPSS score is unavailable, the combination of arbitrary code execution and the ability to target internal services via SSRF raises the likelihood of exploitation in environments where the Docker API server is exposed or the security flag is left enabled. The vulnerability is not listed in the CISA KEV catalog, but the lack of mitigation makes it a high‑priority risk.
OpenCVE Enrichment