SSRF in Dataease Sqlbot
CVE-2026-5417
A vulnerability was determined in Dataease SQLbot up to 1.6.0. This issue affects the function get_es_data_by_http of the file backend/apps/db/es_engine.py of the component Elasticsearch Handler. This manipulation of the argument address c…
Vulnerability class: SSRF (Server-Side Request Forgery)
EPSS: 0.001 (16.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.7 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L.
Affected products
- Dataease Sqlbot — versions 1.0, 1.1, 1.2
Weakness classification (CWE)
References
- VDB-354854 | Dataease SQLbot Elasticsearch es_engine.py get_es_data_by_http server-side request forgery (technical-description, vdb-entry)
- VDB-354854 | CTI Indicators (IOB, IOC, IOA) (signature, permissions-required)
- Submit #756043 | Dataease SQLbot <= v1.6.0 Server-Side Request Forgery (third-party-advisory)
- cna@vuldb.com (exploit)
- cna@vuldb.com (patch)
Frequently asked questions
- What is CVE-2026-5417?
- CVE-2026-5417 is a medium-severity vulnerability in Dataease Sqlbot, classified under Server-Side Request Forgery (SSRF). CVSS score: 4.7/10. Published 2026-04-02.
- How severe is CVE-2026-5417?
- Medium severity. CVSS v3 base score is 4.7 out of 10.