CVE-2025-25196

MEDIUM EPSS 31.9%
Published Feb 19, 20251y ago · Modified Jun 17, 20262w ago
5.8 CVSS 4.0
Medium
Find Similar
Published Feb 19, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA < v1.8.4 (Helm chart < openfga-0.2.22, docker < v.1.8.4) are vulnerable to authorization bypass when certain Check and ListObject calls are executed. Users on OpenFGA v1.8.4 or previous, specifically under the following conditions are affected by this authorization bypass vulnerability: 1. Calling Check API or ListObjects with a model that has a relation directly assignable to both public access AND userset with the same type. 2. A type bound public access tuple is assigned to an object. 3. userset tuple is not assigned to the same object. and 4. Check request's user field is a userset that has the same type as the type bound public access tuple's user type. Users are advised to upgrade to v1.8.5 which is backwards compatible. There are no known workarounds for this vulnerability.

CVSS Details

Base Score
5.8
Exploitability
Impact
Vector string
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope X

Threat Intelligence

EPSS Exploit Probability
31.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-285

Affected Products 2

VendorProductVersionRange
openfgahelm_charts* <0.2.22
openfgaopenfga* <1.8.5

References 2

  • github.com https://github.com/openfga/openfga/commit/0aee4f47e0c642de78831ceb27bb62b116f49588
    Patch
  • github.com https://github.com/openfga/openfga/security/advisories/GHSA-g4v5-6f5p-m38j
    Vendor Advisory

Remediation

  • github.com https://github.com/openfga/openfga/commit/0aee4f47e0c642de78831ceb27bb62b116f49588
    Patch