GHSA-q62r-8ppj-xvf4
Suggest an improvement- Source
- https://github.com/advisories/GHSA-q62r-8ppj-xvf4
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/04/GHSA-q62r-8ppj-xvf4/GHSA-q62r-8ppj-xvf4.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-q62r-8ppj-xvf4
- Aliases
- Published
- 2025-04-09T12:49:38Z
- Modified
- 2025-04-09T17:32:13.162092Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Umbraco has a Management API Vulnerability to Path Traversal With Authenticated Users
- Details
-
Impact
Authenticated users to the Umbraco backoffice are able to craft management API request that exploit a path traversal vulnerability to upload files into a incorrect location.
Patches
The issue affects Umbraco 14+ and is patched in 14.3.4 and 15.3.1.
Workarounds
Umbraco supports the configuration of allowed and disallowed file extensions. Using these options to allow only necessary file extensions significantly reduces the scope of the vulnerability.
- Database specific
{ "nvd_published_at": "2025-04-08T16:15:27Z", "cwe_ids": [ "CWE-22", "CWE-23" ], "severity": "HIGH", "github_reviewed": true, "github_reviewed_at": "2025-04-09T12:49:38Z" }- References
-
- https://github.com/umbraco/Umbraco-CMS/security/advisories/GHSA-q62r-8ppj-xvf4
- https://nvd.nist.gov/vuln/detail/CVE-2025-32017
- https://github.com/umbraco/Umbraco-CMS/commit/06a2a500b358ce15b1e228391eb60bd517c6e833
- https://github.com/umbraco/Umbraco-CMS/commit/d3c1443b14b1076faf13d1bcecc42860fdf5fad8
- https://github.com/umbraco/Umbraco-CMS
Affected packages
NuGet / Umbraco.Cms
Package
- Name
- Umbraco.Cms
- View open source insights on deps.dev
- Purl
- pkg:nuget/Umbraco.Cms
NuGet / Umbraco.Cms
Package
- Name
- Umbraco.Cms
- View open source insights on deps.dev
- Purl
- pkg:nuget/Umbraco.Cms