216.73.217.172

CVE-2025-34171

· Published 02/01/2026 17:15 · Modified 03/01/2026 22:15

Labels: CVE-2025-34171 2026-01-02CVE-2025-34171CWE-497[email protected]

Essential information

Published
02/01/2026 17:15
Modified
03/01/2026 22:15
Author
Creator
CVSS
6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

CasaOS versions up to and including 0.4.15 expose multiple unauthenticated endpoints that allow remote attackers to retrieve sensitive configuration files and system debug information. The /v1/users/image endpoint can be abused with a user-controlled path parameter to access files under /var/lib/casaos/1/, which reveals installed applications and configuration details. Additionally, /v1/sys/debug discloses host operating system, kernel, hardware, and storage information. The endpoints also return distinct error messages, enabling file existence enumeration of arbitrary paths on the underlying host filesystem. This information disclosure can be used for reconnaissance and to facilitate targeted follow-up attacks against services deployed on the host.

NVD status

Status
Received — CVE has been marked as "**REJECT**" in the CVE List. These CVEs are stored in the NVD, but do not show up in search results.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
* / * cpe:2.3:*:*:*:*:*:*:*:*:*:*:*

References