CVE-2025-21611

Published: Jan 6, 2025

Modified: Jan 6, 2025

PUBLISHED

CVSS v3.1

8.8

HIGH

Description

tgstation-server is a production scale tool for BYOND server management. Prior to 6.12.3, roles used to authorize API methods were incorrectly OR'd instead of AND'ed with the role used to determine if a user was enabled. This allows enabled users access to most, but not all, authorized actions regardless of their permissions. Notably, the WriteUsers right is unaffected so users may not use this bug to permanently elevate their account permissions. The fix is release in tgstation-server-v6.12.3.

Vendor	Product	Versions
tgstation	tgstation-server	affected `>= 6.11.0, < 6.12.3`

Weaknesses (CWE)

CWE-285

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

https://github.com/tgstation/tgstation-server/security/advisories/GHSA-rf5r-q276-vrc4

x_refsource_CONFIRM

https://github.com/tgstation/tgstation-server/issues/2064

x_refsource_MISC

https://github.com/tgstation/tgstation-server/commit/e7b1189620baaf03c2d23f6e164d07c7c7d87d57

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-21611

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References