CVE-2025-26621

MEDIUM EPSS 27.2%

Published May 19, 20251y ago · Modified Jun 17, 20261w ago

6.8 CVSS 3.1

Medium

Published May 19, 2025 1y ago

Last Modified Jun 17, 2026 1w ago

Description

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.5.2, any user with the capability manage customizations can edit webhook that will execute javascript code. This can be abused to cause a denial of service attack by prototype pollution, making the node js server running the OpenCTI frontend become unavailable. Version 6.5.2 fixes the issue.

CVSS Details

Base Score

6.8

Exploitability

2.3

Impact

4.0

Vector string

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Attack Vector Network

Attack Complexity Low

Privileges Required High

User Interaction None

Scope Changed

Confidentiality None

Integrity None

Availability High

Threat Intelligence

EPSS Exploit Probability

27.2% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 2

CWE-1321

CWE-94 Improper Control of Generation of Code (Code Injection) Injection

Affected Products 1

Vendor	Product	Version	Range
citeum	opencti	*	<6.5.2

References 2

github.com https://github.com/OpenCTI-Platform/opencti/security/advisories/GHSA-gq63-jm3h-374p

Vendor Advisory
github.com https://github.com/OpenCTI-Platform/opencti/security/advisories/GHSA-mf88-g2wq-p7qm

Not Applicable

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.