CVE-2025-46827

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-46827
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-46827.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-46827
Aliases
Published
2025-05-07T15:29:31.420Z
Modified
2026-04-10T05:28:33.570402Z
Severity
  • 8.0 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
Graylog Allows Session Takeover via Insufficient HTML Sanitization
Details

Graylog is a free and open log management platform. Prior to versions 6.0.14, 6.1.10, and 6.2.0, it is possible to obtain user session cookies by submitting an HTML form as part of an Event Definition Remediation Step field. For this attack to succeed, the attacker needs a user account with permissions to create event definitions, while the user must have permissions to view alerts. Additionally, an active Input must be present on the Graylog server that is capable of receiving form data (e.g. a HTTP input, TCP raw or syslog etc). Versions 6.0.14, 6.1.10, and 6.2.0 fix the issue. No known workarounds are available, as long as the relatively rare prerequisites are met.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/46xxx/CVE-2025-46827.json",
    "cwe_ids": [
        "CWE-79"
    ],
    "cna_assigner": "GitHub_M"
}
References

Affected packages

Git / github.com/graylog2/graylog2-server

Affected ranges

Type
GIT
Repo
https://github.com/graylog2/graylog2-server
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
508aa86b69844f2f53b7dbd0f040343e16513d50
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "6.0.14"
        }
    ]
}
Type
GIT
Repo
https://github.com/graylog2/graylog2-server
Events
Introduced
cb28959341c6e8bde044718c0269f6155a9ecd66
Fixed
a308be3acfa63e6c1d932084bcd67bf8b21507d1
Database specific 
{
    "versions": [
        {
            "introduced": "6.1.0"
        },
        {
            "fixed": "6.1.10"
        }
    ]
}

Affected versions

0.*
0.10.0
0.10.0-preview.2
0.10.0-rc.1
0.10.0-rc.2
0.10.0-rc.3
0.10.0-rc.4
0.11.0
0.20.0-preview.1
0.20.0-preview.2
0.20.0-preview.3
0.20.0-preview.4
0.20.0-preview.5
0.20.0-preview.6
0.20.0-rc.1
0.20.0-rc.1-1
0.21.0-beta1
0.21.0-beta2
0.21.0-beta3
0.21.0-beta4
0.21.0-rc.1
0.9
0.9.1
0.9.2
0.9.3
0.9.4
0.9.4p1
0.9.5
0.9.5p1
0.9.6
0.9.6-PREVIEW
0.9.6-PREVIEW.2
0.9.6-PREVIEW.3
0.9.6-beta
0.9.7-preview.1
1.*
1.0.0-beta.1
1.1.0-beta.1
1.1.0-beta.2
1.1.0-beta.3
1.1.0-rc.1
1.2.0-rc.1
1.2.0-rc.2
1.2.0-rc.3
1.2.0-rc.4
2.*
2.0.0-alpha.1
2.0.0-alpha.2
2.0.0-alpha.3
2.0.0-alpha.4
2.0.0-alpha.5
2.0.0-beta.1
2.0.0-beta.2
2.0.0-beta.3
2.1.0-alpha.1
2.1.0-alpha.2
2.1.0-beta.1
2.1.0-beta.2
2.1.0-beta.3
2.1.0-beta.4
2.1.0-rc.1
2.2.0
2.2.0-alpha.1
2.2.0-alpha.2
2.2.0-alpha.3
2.2.0-alpha.4
2.2.0-beta.1
2.2.0-beta.2
2.2.0-beta.3
2.2.0-beta.4
2.2.0-beta.5
2.2.0-beta.6
2.2.0-rc.1
2.3.0-alpha.1
2.3.0-alpha.2
2.3.0-alpha.3
2.3.0-beta.1
2.3.0-rc.1
2.4.0-alpha.1
2.4.0-alpha.2
2.4.0-alpha.3
3.*
3.0.0-alpha.0
3.0.0-alpha.1
3.0.0-alpha.2
3.0.0-alpha.3
3.0.0-alpha.4
3.0.0-alpha.5
3.0.0-beta.1
3.1.0
3.1.0-beta.1
3.1.0-beta.2
3.1.0-beta.3
3.1.0-rc.1
3.1.0-rc.2
3.2.0-beta.1
3.2.0-beta.2
3.2.0-beta.3
3.2.0-beta.4
3.2.0-rc.1
3.3.0-beta.1
3.3.0-beta.2
3.3.0-beta.3
3.3.0-rc.1
4.*
4.0.0-beta.1
4.0.0-beta.2
4.0.0-beta.3
4.0.0-beta.4
4.0.0-rc.1
4.1.0
4.1.0-beta.1
4.1.0-beta.2
4.1.0-rc.1
4.2.0-beta.1
4.3.0-beta.1
4.3.0-beta.2
4.3.0-beta.3
4.3.0-rc.1
5.*
5.0.0-alpha.1
5.0.0-beta.1
5.0.0-beta.2
5.0.0-beta.3
5.0.0-beta.4
5.0.0-beta.5
5.0.0-rc.1
5.1.0-beta.1
5.1.0-beta.2
5.1.0-beta.3
5.1.0-rc.1
5.2.0-alpha.1
5.2.0-beta.1
5.2.0-beta.2
5.2.0-beta.3
5.2.0-rc.1
6.*
6.0.0
6.0.0-alpha.1
6.0.0-alpha.2
6.0.0-alpha.3
6.0.0-beta.1
6.0.0-beta.2
6.0.0-beta.3
6.0.0-beta.4
6.0.0-beta.5
6.0.0-rc.1
6.0.0-rc.2
6.0.0-rc.3
6.0.0-rc.4
6.0.0-rc.5
6.0.1
6.0.10
6.0.11
6.0.12
6.0.13
6.0.2
6.0.3
6.0.4
6.0.5
6.0.6
6.0.7
6.0.8
6.0.9
6.1.0
6.1.1
6.1.2
6.1.3
6.1.4
6.1.5
6.1.6
6.1.7
6.1.8
6.1.9
v0.*
v0.20.0-preview.1
v0.20.0-rc.1-1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-46827.json"