CRITICAL🇵🇱 Wersja polska

CVE-2024-25421

CVSS 9.8v3.1pub. 2024-03-26upd. 2025-05-07

An issue in Ignite Realtime Openfire v.4.9.0 and before allows a remote attacker to escalate privileges via the ROOM_CACHE component.

🤖 AI Analysis
How it works

The vulnerability is classified as CWE-250 (Execution with Unnecessary Privileges), which indicates that the ROOM_CACHE component processes operations with excessive privileges. A remote attacker can send an appropriately crafted request without authentication and without user interaction, which will be handled by the MUC (Multi-User Chat) room management component in the LocalMUCRoomManager class. As a result, it is possible to obtain higher privileges in the system than those to which the attacker is entitled.

Impact

An attacker can obtain unauthorized privilege escalation on the Openfire server, which potentially leads to breach of confidentiality, integrity and availability of the system (all three aspects rated as HIGH in the CVSS vector).

Mitigation & patch

Patches available from the vendor should be applied according to the references. It is recommended to update Openfire to a version higher than 4.9.0 and monitor official project resources at https://www.igniterealtime.org/projects/openfire/

Who is affected

Ignite Realtime Openfire version 4.9.0 and all earlier versions.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Igniterealtime Openfire

    APP
    Igniterealtime
    ≤ 4.9.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References

Related vulnerabilities

CVE-2021-45967CRITICAL9.8ten sam produkt

An issue was discovered in Pascom Cloud Phone System before 7.20.x. A configuration error between NGINX and a ...

CVE-2019-18394CRITICAL9.8ten sam produkt

A Server Side Request Forgery (SSRF) vulnerability in FaviconServlet.java in Ignite Realtime Openfire through ...

CVE-2023-32315HIGH8.6⚠ KEVten sam produkt

Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's administrative console, a...

CVE-2024-25420HIGH7.2ten sam produkt

An issue in Ignite Realtime Openfire before 4.8.1 allows a remote attacker to escalate privileges via the admi...

CVE-2014-3451HIGH7.5ten sam produkt

OpenFire XMPP Server before 3.10 accepts self-signed certificates, which allows remote attackers to perform un...