{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "2.10.10" }, { "fixed": "5.18.1" } ] }, "events": [ { "introduced": "5c190d06f1cec6a4ecd2a1fbfc77c498c91b9d2c" }, { "fixed": "434d9cc7eed62e6324bd922865f5c29136f3474c" } ], "repo": "https://github.com/withastro/astro", "type": "GIT" } ] } ], "aliases": [ "GHSA-g735-7g2w-hh3f" ], "database_specific": { "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-20" ], "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/33xxx/CVE-2026-33769.json" }, "details": "Astro is a web framework. From version 2.10.10 to before version 5.18.1, this issue concerns Astro's remotePatterns path enforcement for remote URLs used by server-side fetchers such as the image optimization endpoint. The path matching logic for /* wildcards is unanchored, so a pathname that contains the allowed prefix later in the path can still match. As a result, an attacker can fetch paths outside the intended allowlisted prefix on an otherwise allowed host. This issue has been patched in version 5.18.1.", "id": "CVE-2026-33769", "modified": "2026-04-01T23:07:56.339595390Z", "published": "2026-03-24T18:44:29.169Z", "references": [ { "type": "ADVISORY", "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/33xxx/CVE-2026-33769.json" }, { "type": "ADVISORY", "url": "https://github.com/withastro/astro/security/advisories/GHSA-g735-7g2w-hh3f" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33769" } ], "schema_version": "1.7.3", "severity": [ { "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P", "type": "CVSS_V4" } ], "summary": "Astro: Remote allowlist bypass via unanchored matchPathname wildcard" }