Description
A Server-Side Request Forgery (SSRF) vulnerability exists in Mautic's Focus component. Due to insufficient validation of user-supplied URLs, an authenticated user can trigger outbound HTTP requests from the hosting server, enabling internal network reconnaissance or forcing requests to arbitrary internal or external destinations.
Published: 2026-05-29
Score: 6.4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An authenticated attacker can supply arbitrary URLs to the Focus component of Mautic, causing the server to initiate outbound HTTP requests. This Server‑Side Request Forgery allows internal network reconnaissance or access to internal services that are normally isolated from the internet. The vulnerability is a classic example of insufficient input validation, classified as CWE‑918 and presenting a moderate risk to confidentiality and integrity.

Affected Systems

The flaw affects the Mautic open‑source marketing automation platform, specifically its Focus component. The CVE entry does not list specific versions, so any installation of Mautic that includes the Focus feature and has not applied vendor fixes may be susceptible.

Risk and Exploitability

The CVSS score of 6.4 indicates a moderate severity level. No EPSS value is reported, and the vulnerability is not listed in the CISA KEV catalog. Because the user must be authenticated to exploit the flaw and the description shows no direct network discovery from the outside, the likely attack vector is internal or through compromised credentials. Still, the potential to exfiltrate data or pivot to other internal systems elevates the importance of timely mitigation.

Generated by OpenCVE AI on May 29, 2026 at 11:21 UTC.

Remediation

Vendor Workaround

There are no official workarounds. To completely mitigate the exposure without upgrading, disabling or limiting external network access from the Mautic web server to internal-only subnets and local hosts is recommended.

OpenCVE Recommended Actions

  • Upgrade to the latest patched version of Mautic where the Focus component SSRF issue has been corrected.
  • If a patch is not available, restrict outbound network traffic from the Mautic web server to internal subnets and local hosts only, effectively blocking the SSRF from reaching external destinations.
  • Monitor web server logs for anomalous outbound requests and consider disabling the Focus component if it is not required for your deployment.

Generated by OpenCVE AI on May 29, 2026 at 11:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 16:00:00 +0000

Type Values Removed Values Added
First Time appeared Mautic
Mautic mautic
Vendors & Products Mautic
Mautic mautic

Fri, 29 May 2026 11:45:00 +0000

Type Values Removed Values Added
Title SSRF Vulnerability in Mautic Focus Component

Fri, 29 May 2026 11:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 29 May 2026 10:30:00 +0000

Type Values Removed Values Added
Description A Server-Side Request Forgery (SSRF) vulnerability exists in Mautic's Focus component. Due to insufficient validation of user-supplied URLs, an authenticated user can trigger outbound HTTP requests from the hosting server, enabling internal network reconnaissance or forcing requests to arbitrary internal or external destinations.
Weaknesses CWE-918
References
Metrics cvssV3_1

{'score': 6.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N'}

Subscriptions

Mautic Mautic
cve-icon MITRE

Status: PUBLISHED

Assigner: Mautic

Published:

Updated: 2026-05-29T10:51:10.746Z

Reserved: 2026-05-26T08:36:47.057Z

Link: CVE-2026-9557

cve-icon Vulnrichment

Updated: 2026-05-29T10:49:50.601Z

cve-icon NVD

Status : Deferred

Published: 2026-05-29T11:16:17.853

Modified: 2026-05-29T15:39:34.620

Link: CVE-2026-9557

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T15:47:11Z

Weaknesses