External risk intelligence

Guardrails Detectors File Type Detector SSRF and Local File Read Vulnerability

CVE advisorySeverity: CRITICAL (CVSS 9.3)

CVE-2026-15143

The vulnerability exists in a content detector library designed to process external input. Such detectors are commonly integrated into public-facing web applications and API services that process user-supplied data, making them a frequent point of interaction for internet-based traffic.

Server-Side Request Forgery

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

External exposure likelihood

Horizon Alert

Summary of the vulnerability and why it matters

This CVE describes a critical flaw in a content detection component that handles file types. An attacker could exploit this to make the system send requests to arbitrary web addresses or read local files, potentially exposing sensitive information like cloud credentials or internal network access.

  • Flaw allows attackers to read files or access external links.
  • Matters because it could expose cloud credentials and internal data.
  • Confirm relevance and exposure of this detector.

Attack Path

How an attacker could exploit the issue

An attacker could exploit this vulnerability by sending a specially crafted XML Schema Definition string to a system using the affected file type content detector. This could allow them to make the server request arbitrary URLs or read local files, potentially exposing sensitive information like cloud credentials or internal network access.

  • Remote, unauthenticated access is possible.
  • Supplying a malicious XSD string triggers the vulnerability.
  • Sensitive information disclosure and internal access.

Live Threat

Current exploitation, exposure, and threat context

A flaw in the file type content detector of guardrails-detectors could allow a remote attacker to provide a malicious XML Schema Definition (XSD) string. This can lead to server-side requests to arbitrary URLs or the reading of local files, potentially exposing sensitive information like cloud credentials or internal network services when supported by the advisory.

  • Sensitive cloud credentials could be exposed.
  • Arbitrary network requests or file reads may occur.
  • Potential for unauthorized access to internal systems.

Operational Fix

Recommended remediation, mitigation, and detection steps

The guardrails-detectors library's file type content detector is susceptible to server-side request forgery and local file reads due to improper handling of arbitrary XSD strings. This vulnerability could expose sensitive data like cloud credentials or internal network resources. Responsibility for addressing this likely falls to the application or platform teams integrating this library, as well as security teams overseeing network exposure. The first critical step involves identifying all instances of the affected technology, assessing their business criticality and network reachability, and then engaging the accountable owner to plan a risk-based remediation strategy.

  • Identify owners and assess exposure.
  • Verify external access and data criticality.
  • Plan remediation based on risk.

Supplementary metadata

Validate whether this threat affects your internet-facing exposure.

Halo Threat Intelligence helps prioritize remediation with Halo Surface Signal and H/A/L/O context. Start exposure validation with a free external attack surface trial.

Frequently asked questions

What is guardrails-detectors?

Guardrails-detectors is a software library designed to analyze and identify file types. Developers integrate this component into their applications to automatically inspect incoming data streams or uploaded files to ensure they conform to expected formats before further processing occurs.

What does CVE-2026-15143 mean for my software?

This CVE involves a vulnerability classified as CWE-918, or Server-Side Request Forgery (SSRF). Because the library does not properly restrict XML Schema Definition (XSD) inputs, an attacker can manipulate the detector to force the host server to access unintended external websites or read restricted local files on the system.

How does an attacker trigger this vulnerability?

The vulnerability is triggered when an attacker submits a specially crafted XML Schema Definition (XSD) string to an application using the affected detector. It is important to note that standard file uploads or data processing that do not involve malicious XSD input strings do not invoke this specific flaw.

Why should I care about this vulnerability?

According to Halo Surface Signal, this vulnerability is likely to affect you because it resides in a detector commonly integrated into public-facing web applications and APIs. If your service processes external user input, an attacker could exploit this reachability to reach internal network services or steal sensitive cloud credentials.

What are the first steps to address CVE-2026-15143?

Begin by identifying all applications in your environment that utilize the guardrails-detectors library. Once identified, evaluate which of those systems are reachable from the internet or handle untrusted user data. Finally, coordinate with your application and platform owners to determine the appropriate path for updating the library or restricting its input handling.

References