Unrated severityNVD Advisory· Published Jan 27, 2025· Updated Feb 12, 2025

vaultwarden allows RCE in the admin panel

CVE-2025-24364

Description

vaultwarden is an unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs. Attacker with authenticated access to the vaultwarden admin panel can execute arbitrary code in the system. The attacker could then change some settings to use sendmail as mail agent but adjust the settings in such a way that it would use a shell command. It then also needed to craft a special favicon image which would have the commands embedded to run during for example sending a test email. This vulnerability is fixed in 1.33.0.

Affected products

Dani Garcia/Vaultwardenv5
Range: < 1.33.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/dani-garcia/vaultwarden/releases/tag/1.33.0mitrex_refsource_MISC
github.com/dani-garcia/vaultwarden/security/advisories/GHSA-h6cc-rc6q-23j4mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000