Описание
Vaultwarden has Unauthorized Access via Partial Update API on Another User’s Cipher
Summary
In the test environment, it was confirmed that an authenticated regular user can specify another user’s cipher_id and call:
Even though the standard retrieval API correctly denies access to that cipher, the partial update endpoint returns 200 OK and exposes cipherDetails (including name, notes, data, secureNote, etc.).
Description
put_cipher_partial retrieves the target Cipher but does not perform ownership or access control checks before returning to_json.
Authorization checks present in the normal update API are missing here.
src/api/core/ciphers.rs:717
By comparison, the standard update API includes an explicit authorization check: src/api/core/ciphers.rs:688
The to_json method does not abort processing when access restrictions are not met; instead, it proceeds to construct and return a detailed response.
src/db/models/cipher.rs:175
src/db/models/cipher.rs:335
Preconditions
- The attacker possesses a valid regular-user JWT (Bearer token).
- The attacker knows the target (victim)
cipher_id.
Steps to Reproduce
-
Prepare the attacker JWT and victim
cipher_id(preconditions). -
Baseline check: confirm that standard retrieval is denied.
-
Execute the vulnerable API. Confirm that 200 OK is returned and that
cipherDetailsincludes fields such asid,name,notes,secureNote, etc.
Potential Impact
- Unauthorized disclosure of other users’ cipher information (confidentiality breach).
- Creation of unauthorized associations within the attacker’s user context (e.g.,
favoriteor folder operations). - The response from
/api/ciphers/<cipher_id>/partialincludesattachments[].url.
In filesystem (FS) deployments, this returns a tokenized endpoint such as:
In object storage deployments, it returns a short-lived pre-signed URL.
As a result, an attacker can use these URLs to directly download attachment data that they are not authorized to access.
This can lead to disclosure of sensitive information stored in the Vault, including personal data and authentication credentials. Such exposure may further result in account compromise, lateral movement, and other secondary impacts.
Пакеты
vaultwarden
<= 1.35.3
1.35.4
Связанные уязвимости
Vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs. Prior to version 1.35.4, an authenticated regular user can specify another user’s cipher_id and call "PUT /api/ciphers/{id}/partial" Even though the standard retrieval API correctly denies access to that cipher, the partial update endpoint returns 200 OK and exposes cipherDetails (including name, notes, data, secureNote, etc.). This issue has been patched in version 1.35.4.
Vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs. Prior to version 1.35.4, an authenticated regular user can specify another user’s cipher_id and call "PUT /api/ciphers/{id}/partial" Even though the standard retrieval API correctly denies access to that cipher, the partial update endpoint returns 200 OK and exposes cipherDetails (including name, notes, data, secureNote, etc.). This issue has been patched in version 1.35.4.
Vaultwarden is an unofficial Bitwarden compatible server written in Ru ...