CVE-2025-24364

Опубликовано: 27 янв. 2025

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs. Attacker with authenticated access to the vaultwarden admin panel can execute arbitrary code in the system. The attacker could then change some settings to use sendmail as mail agent but adjust the settings in such a way that it would use a shell command. It then also needed to craft a special favicon image which would have the commands embedded to run during for example sending a test email. This vulnerability is fixed in 1.33.0.

Ссылки

https://github.com/dani-garcia/vaultwarden/releases/tag/1.33.0
Release Notes
https://github.com/dani-garcia/vaultwarden/security/advisories/GHSA-h6cc-rc6q-23j4
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dani-garcia:vaultwarden:*:*:*:*:*:*:*:*

Версия до 1.33.0 (исключая)

EPSS

Процентиль: 84%

0.02157

Низкий

7.2 High

CVSS3

Дефекты

CWE-74

Связанные уязвимости

CVE-2025-24364

CVSS3: 7.2

debian

около 1 года назад

vaultwarden is an unofficial Bitwarden compatible server written in Ru ...

BDU:2025-05022

CVSS3: 7.2

fstec

больше 1 года назад

Уязвимость сервиса для управления паролями vaultwarden, связанная с неверной нейтрализацией особых элементов в выходных данных, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 84%

0.02157

Низкий

7.2 High

CVSS3

Дефекты

CWE-74