Server-Side Request Forgery Vulnerability in Helicone ai-gateway
CVE-2026-15508
Key Information:
- Vendor
Helicone
- Status
- Vendor
- CVE Published:
- 12 July 2026
Badges
What is CVE-2026-15508?
A vulnerability has been identified in Helicone ai-gateway up to version 0.2.0-beta.30, specifically in the AWS Metadata Service component. The flaw exists within the 'build_target_url' function located in 'ai-gateway/src/dispatcher/service.rs', where improper validation of the 'extracted_path_and_query' argument can allow an attacker to execute a remote server-side request forgery (SSRF) attack. This type of exploitation could potentially lead to unauthorized access to backend services or sensitive data. The vendor was informed about this issue but has not provided a response.
Affected Version(s)
ai-gateway 0.2.0-beta.0
ai-gateway 0.2.0-beta.1
ai-gateway 0.2.0-beta.2
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
References
CVSS V4
Timeline
- ๐ก
Public PoC available
- ๐พ
Exploit known to exist
Vulnerability published
Vulnerability Reserved
