CVE-2023-46729— Sentry Next.js vulnerable to SSRF via Next.js SDK tunnel endpoint

CVSS 9.3 · Critical EPSS 1.05% · P78 Updated Jan 25, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-46729

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Sentry Next.js vulnerable to SSRF via Next.js SDK tunnel endpoint

Source: NVD (National Vulnerability Database)

Vulnerability Description

sentry-javascript provides Sentry SDKs for JavaScript. An unsanitized input of Next.js SDK tunnel endpoint allows sending HTTP requests to arbitrary URLs and reflecting the response back to the user. This issue only affects users who have Next.js SDK tunneling feature enabled. The problem has been fixed in version 7.77.0.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

服务端请求伪造(SSRF)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Mobileiron Sentry 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Mobileiron Sentry是美国思可信（Mobileiron）公司的一款智能网关产品。 Mobileiron Sentry Sentry-javascript 7.77.0之前版本存在安全漏洞，该漏洞源于未经净化的输入允许将HTTP请求发送到任意URL并将响应反射回用户。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
getsentry	sentry-javascript	>= 7.26.0, < 7.77.0	-

II. Public POCs for CVE-2023-46729

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-46729

请登录查看更多情报信息。

https://github.com/getsentry/sentry-javascript/pull/9415x_refsource_MISC
https://github.com/getsentry/sentry-javascript/security/advisories/GHSA-2rmr-xw8m-22q9x_refsource_CONFIRM
fix(nextjs): Strictly validate tunnel target parameters (#9415) · getsentry/sentry-javascript@ddbda3c · GitHubx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2023-46729

IV. Related Vulnerabilities

Same product: sentry-javascript

Same vendor: getsentry

Same weakness: CWE-918

V. Comments for CVE-2023-46729

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-46729— Sentry Next.js vulnerable to SSRF via Next.js SDK tunnel endpoint

I. Basic Information for CVE-2023-46729

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2023-46729

III. Intelligence Information for CVE-2023-46729

IV. Related Vulnerabilities

V. Comments for CVE-2023-46729

Leave a comment