GHSA-965r-9cg9-g42p
Suggest an improvement- Source
- https://github.com/advisories/GHSA-965r-9cg9-g42p
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/05/GHSA-965r-9cg9-g42p/GHSA-965r-9cg9-g42p.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/GHSA-965r-9cg9-g42p
- Aliases
- Published
- 2025-05-28T14:38:54Z
- Modified
- 2025-06-04T21:02:06.309428Z
- Severity
-
- 8.3 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L CVSS Calculator
- Summary
- Valtimo backend libraries allows objects in the object-api to be accessed and modified by unauthorized users
- Details
-
Impact
All objects for which an object-management configuration exists can be listed, viewed, edited, created or deleted by unauthorised users.
If object-urls are exposed via other channels, the contents of these objects can be viewed independent of object-management configurations.
Attack requirements
The following conditions have to be met in order to perform this attack: - A user must be logged in - No relevant application roles are required - At least one object-type must be configured via object-management - The scope of the attack is limited to objects that are configured via object-management. - The value of
showInDataMenuis irrelevant for this attackPatches
This issue was patched in version 12.13.0.RELEASE.
Workarounds
It is possible to override the endpoint security as defined in
ObjectenApiHttpSecurityConfigurerandObjectManagementHttpSecurityConfigurer. Depending on the implementation, this could result in loss of functionality. - Database specific
{ "github_reviewed_at": "2025-05-28T14:38:54Z", "severity": "HIGH", "nvd_published_at": "2025-05-30T06:15:28Z", "cwe_ids": [ "CWE-863" ], "github_reviewed": true }- References
-
- https://github.com/valtimo-platform/valtimo-backend-libraries/security/advisories/GHSA-965r-9cg9-g42p
- https://nvd.nist.gov/vuln/detail/CVE-2025-48881
- https://github.com/valtimo-platform/valtimo-backend-libraries/commit/6ab04b30d3dab816bfea32d40ba50e5dd4517272
- https://github.com/valtimo-platform/valtimo-backend-libraries
Affected packages
Maven / com.ritense.valtimo:objecten-api
Package
- Name
- com.ritense.valtimo:objecten-api
- View open source insights on deps.dev
- Purl
- pkg:maven/com.ritense.valtimo/objecten-api
Maven / com.ritense.valtimo:object-management
Package
- Name
- com.ritense.valtimo:object-management
- View open source insights on deps.dev
- Purl
- pkg:maven/com.ritense.valtimo/object-management
Maven / com.ritense.valtimo:object-management
Package
- Name
- com.ritense.valtimo:object-management
- View open source insights on deps.dev
- Purl
- pkg:maven/com.ritense.valtimo/object-management
Affected versions
12.*
Maven / com.ritense.valtimo:objecten-api
Package
- Name
- com.ritense.valtimo:objecten-api
- View open source insights on deps.dev
- Purl
- pkg:maven/com.ritense.valtimo/objecten-api