CVE-2026-25083

Root

Cause

GROWI versions up to v7.4.5 contain a missing authorization vulnerability (CWE-862) in the OpenAI thread and message API endpoints [1]. This means the application fails to verify that the user making a request to these endpoints is permitted to access the targeted thread or message. The vulnerability is classified as an Insecure Direct Object Reference (IDOR), as referenced in the vendor advisory [2].

Exploitation

An attacker must be a logged-in user and know the identifier of a shared AI assistant [1]. With that knowledge, they can send crafted API requests to view or modify threads and messages belonging to other users who also use the same shared AI assistant. No other authentication bypass is required because the endpoint itself lacks authorization checks [2].

Impact

A successful exploit allows an authenticated attacker to read the contents of another user's AI assistant threads (violating confidentiality) and also to tamper with or delete those threads/messages (violating integrity). Availability is partially affected as well, reflected in the CVSS v3.1 score of 8.3 (High) [1].

Mitigation

The vulnerability is fixed in GROWI v7.4.6 [1][2]. Users should update to this version immediately. The vendor has released the update via GitHub and Docker Hub [2]. There are no known workarounds documented, so upgrading is the recommended course of action.