CVE-2025-25182

Published: Feb 12, 2025

Modified: Feb 12, 2025

PUBLISHED

CVSS v3.1

9.4

CRITICAL

Description

Stroom is a data processing, storage and analysis platform. A vulnerability exists starting in version 7.2-beta.53 and prior to versions 7.2.24, 7.3-beta.22, 7.4.4, and 7.5-beta.2 that allows authentication bypass to a Stroom system when configured with ALB and installed in a way that the application is accessible not through the ALB itself. This vulnerability may also allow for server-side request forgery which may lead to code execution or further privileges escalations when using the AWS metadata URL. This scenario assumes that Stroom must be configured to use ALB Authentication integration and the application is network accessible. The vulnerability has been fixed in versions 7.2.24, 7.3-beta.22, 7.4.4, and 7.5-beta.2.

Vendor	Product	Versions
gchq	stroom	affected `>= 7.2-beta.53, < 7.2.24` affected `= 7.5-beta.1` affected `>= 7.3-beta.1, < 7.3-beta.22` affected `>= 7.4-beta.1, < 7.4.4`

Weaknesses (CWE)

CWE-290

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

Low

References

https://github.com/gchq/stroom/security/advisories/GHSA-x489-xx2m-vc43

x_refsource_CONFIRM

https://github.com/gchq/stroom/pull/4320

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-25182

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References