CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-24365: vaultwarden allows escalation of privilege via variable confusion in OrgHeaders trait

8.1 CVSS

Description

vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs. Attacker can obtain owner rights of other organization. Hacker should know the ID of victim organization (in real case the user can be a part of the organization as an unprivileged user) and be the owner/admin of other organization (by default you can create your own organization) in order to attack. This vulnerability is fixed in 1.33.0.

Classification

CVE ID: CVE-2025-24365

CVSS Base Severity: HIGH

CVSS Base Score: 8.1

Affected Products

Vendor: dani-garcia

Product: vaultwarden

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.72% (scored less or equal to compared to others)

EPSS Date: 2025-02-25 (when was this score calculated)

References

https://github.com/dani-garcia/vaultwarden/security/advisories/GHSA-j4h8-vch3-f797
https://github.com/dani-garcia/vaultwarden/releases/tag/1.33.0

Timeline

2025-01-28 00:31:13 UTC
CVE

vaultwarden allows escalation of privilege via variable confusion in OrgHeaders trait