fkie_nvd - fkie_cve-2025-29926

fkie_cve-2025-29926

Vulnerability from fkie_nvd

Published

2025-03-19 18:15

Modified

2025-03-19 18:15

Severity ?

7.9 (High) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:H/SI:H/SA:H

Summary

XWiki Platform is a generic wiki platform. Prior to 15.10.15, 16.4.6, and 16.10.0, any user can exploit the WikiManager REST API to create a new wiki, where the user could become an administrator and so performs other attacks on the farm. Note that this REST API is not bundled in XWiki Standard by default: it needs to be installed manually through the extension manager. The problem has been patched in versions 15.10.15, 16.4.6 and 16.10.0 of the REST module.

References

▼	URL	Tags
	security-advisories@github.com	https://github.com/xwiki/xwiki-platform/commit/82aa670106c7f5e6238ca6ed59a52d1800e05b99
	security-advisories@github.com	https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-gfp2-6qhm-7x43
	security-advisories@github.com	https://jira.xwiki.org/browse/XWIKI-22490

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "XWiki Platform is a generic wiki platform. Prior to 15.10.15, 16.4.6, and 16.10.0, any user can exploit the WikiManager REST API to create a new wiki, where the user could become an administrator and so performs other attacks on the farm. Note that this REST API is not bundled in XWiki Standard by default: it needs to be installed manually through the extension manager. The problem has been patched in versions 15.10.15, 16.4.6 and 16.10.0 of the REST module.",
      },
      {
         lang: "es",
         value: "XWiki Platform es una plataforma wiki genérica. Antes de las versiones 15.10.15, 16.4.6 y 16.10.0, cualquier usuario podía explotar la API REST de WikiManager para crear una nueva wiki, donde podía convertirse en administrador y, por lo tanto, realizar otros ataques a la granja. Tenga en cuenta que esta API REST no está incluida en XWiki Standard por defecto: debe instalarse manualmente mediante el administrador de extensiones. El problema se ha corregido en las versiones 15.10.15, 16.4.6 y 16.10.0 del módulo REST.",
      },
   ],
   id: "CVE-2025-29926",
   lastModified: "2025-03-19T18:15:25.770",
   metrics: {
      cvssMetricV40: [
         {
            cvssData: {
               Automatable: "NOT_DEFINED",
               Recovery: "NOT_DEFINED",
               Safety: "NOT_DEFINED",
               attackComplexity: "LOW",
               attackRequirements: "NONE",
               attackVector: "NETWORK",
               availabilityRequirement: "NOT_DEFINED",
               baseScore: 7.9,
               baseSeverity: "HIGH",
               confidentialityRequirement: "NOT_DEFINED",
               exploitMaturity: "NOT_DEFINED",
               integrityRequirement: "NOT_DEFINED",
               modifiedAttackComplexity: "NOT_DEFINED",
               modifiedAttackRequirements: "NOT_DEFINED",
               modifiedAttackVector: "NOT_DEFINED",
               modifiedPrivilegesRequired: "NOT_DEFINED",
               modifiedSubAvailabilityImpact: "NOT_DEFINED",
               modifiedSubConfidentialityImpact: "NOT_DEFINED",
               modifiedSubIntegrityImpact: "NOT_DEFINED",
               modifiedUserInteraction: "NOT_DEFINED",
               modifiedVulnAvailabilityImpact: "NOT_DEFINED",
               modifiedVulnConfidentialityImpact: "NOT_DEFINED",
               modifiedVulnIntegrityImpact: "NOT_DEFINED",
               privilegesRequired: "NONE",
               providerUrgency: "NOT_DEFINED",
               subAvailabilityImpact: "HIGH",
               subConfidentialityImpact: "HIGH",
               subIntegrityImpact: "HIGH",
               userInteraction: "NONE",
               valueDensity: "NOT_DEFINED",
               vectorString: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
               version: "4.0",
               vulnAvailabilityImpact: "LOW",
               vulnConfidentialityImpact: "NONE",
               vulnIntegrityImpact: "LOW",
               vulnerabilityResponseEffort: "NOT_DEFINED",
            },
            source: "security-advisories@github.com",
            type: "Secondary",
         },
      ],
   },
   published: "2025-03-19T18:15:25.770",
   references: [
      {
         source: "security-advisories@github.com",
         url: "https://github.com/xwiki/xwiki-platform/commit/82aa670106c7f5e6238ca6ed59a52d1800e05b99",
      },
      {
         source: "security-advisories@github.com",
         url: "https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-gfp2-6qhm-7x43",
      },
      {
         source: "security-advisories@github.com",
         url: "https://jira.xwiki.org/browse/XWIKI-22490",
      },
   ],
   sourceIdentifier: "security-advisories@github.com",
   vulnStatus: "Awaiting Analysis",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-285",
            },
         ],
         source: "security-advisories@github.com",
         type: "Primary",
      },
   ],
}

cve-2025-29926

Vulnerability from cvelistv5

Published

2025-03-19 17:40

Modified

2025-03-19 18:21

Severity ?

7.9 (High) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:H/SI:H/SA:H

Summary

References

▼	URL	Tags
	https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-gfp2-6qhm-7x43	x_refsource_CONFIRM
	https://github.com/xwiki/xwiki-platform/commit/82aa670106c7f5e6238ca6ed59a52d1800e05b99	x_refsource_MISC
	https://jira.xwiki.org/browse/XWIKI-22490	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	xwiki	xwiki-platform	Version: >= 5.4-rc-1, < 15.10.15 Version: >= 16.0.0-rc-1, < 16.4.6 Version: >= 16.5.0-rc-1, < 16.10.0

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2025-29926",
                        options: [
                           {
                              Exploitation: "poc",
                           },
                           {
                              Automatable: "yes",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-03-19T18:21:11.670455Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-03-19T18:21:22.357Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               product: "xwiki-platform",
               vendor: "xwiki",
               versions: [
                  {
                     status: "affected",
                     version: ">= 5.4-rc-1, < 15.10.15",
                  },
                  {
                     status: "affected",
                     version: ">= 16.0.0-rc-1, < 16.4.6",
                  },
                  {
                     status: "affected",
                     version: ">= 16.5.0-rc-1, < 16.10.0",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "XWiki Platform is a generic wiki platform. Prior to 15.10.15, 16.4.6, and 16.10.0, any user can exploit the WikiManager REST API to create a new wiki, where the user could become an administrator and so performs other attacks on the farm. Note that this REST API is not bundled in XWiki Standard by default: it needs to be installed manually through the extension manager. The problem has been patched in versions 15.10.15, 16.4.6 and 16.10.0 of the REST module.",
            },
         ],
         metrics: [
            {
               cvssV4_0: {
                  attackComplexity: "LOW",
                  attackRequirements: "NONE",
                  attackVector: "NETWORK",
                  baseScore: 7.9,
                  baseSeverity: "HIGH",
                  privilegesRequired: "NONE",
                  subAvailabilityImpact: "HIGH",
                  subConfidentialityImpact: "HIGH",
                  subIntegrityImpact: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:H/SI:H/SA:H",
                  version: "4.0",
                  vulnAvailabilityImpact: "LOW",
                  vulnConfidentialityImpact: "NONE",
                  vulnIntegrityImpact: "LOW",
               },
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-285",
                     description: "CWE-285: Improper Authorization",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-03-19T17:40:44.937Z",
            orgId: "a0819718-46f1-4df5-94e2-005712e83aaa",
            shortName: "GitHub_M",
         },
         references: [
            {
               name: "https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-gfp2-6qhm-7x43",
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://github.com/xwiki/xwiki-platform/security/advisories/GHSA-gfp2-6qhm-7x43",
            },
            {
               name: "https://github.com/xwiki/xwiki-platform/commit/82aa670106c7f5e6238ca6ed59a52d1800e05b99",
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://github.com/xwiki/xwiki-platform/commit/82aa670106c7f5e6238ca6ed59a52d1800e05b99",
            },
            {
               name: "https://jira.xwiki.org/browse/XWIKI-22490",
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://jira.xwiki.org/browse/XWIKI-22490",
            },
         ],
         source: {
            advisory: "GHSA-gfp2-6qhm-7x43",
            discovery: "UNKNOWN",
         },
         title: "The WikiManager REST API allows any user to create wikis",
      },
   },
   cveMetadata: {
      assignerOrgId: "a0819718-46f1-4df5-94e2-005712e83aaa",
      assignerShortName: "GitHub_M",
      cveId: "CVE-2025-29926",
      datePublished: "2025-03-19T17:40:44.937Z",
      dateReserved: "2025-03-12T13:42:22.136Z",
      dateUpdated: "2025-03-19T18:21:22.357Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted