Formio improperly authorized permission elevation through specially crafted request path

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Description

Form.io is a combined Form and API platform for Serverless applications. Versions 3.5.6 and below and 4.0.0-rc.1 through 4.4.2 contain a flaw in path handling which could allow an attacker to access protected API endpoints by sending a crafted request path. An unauthenticated or unauthorized request could retrieve data from endpoints that should be protected. This issue is fixed in versions 3.5.7 and 4.4.3.

AI Analysis

Path handling flaw allowing unauthorized access to protected API endpoints

Basic Information

ID CVE-2025-67718

Source GitHub_M

Published Dec 11, 2025 at 00:58

Affected Product

Vendor formio

Product formio

Version < 3.5.7

Affected Versions formio formio < 3.5.7
formio formio >= 4.0.0-rc.1, < 4.4.3

CWE Classification

CWE-178 CWE-200

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor Form.io

Product Form.io

Version 3.5.6 and below, 4.0.0-rc.1 through 4.4.2

References

{
    "lastseen": "",
    "description": "Form.io is a combined Form and API platform for Serverless applications. Versions 3.5.6 and below and 4.0.0-rc.1 through 4.4.2 contain a flaw in path handling which could allow an attacker to access protected API endpoints by sending a crafted request path. An unauthenticated or unauthorized request could retrieve data from endpoints that should be protected. This issue is fixed in versions 3.5.7 and 4.4.3.",
    "published": "2025-12-11T00:58:43.297Z",
    "modified": "2025-12-11T00:58:43.297Z",
    "type": "cve",
    "title": "Formio improperly authorized permission elevation through specially crafted request path",
    "source": "GitHub_M",
    "references": "https://github.com/formio/formio/security/advisories/GHSA-m654-769v-qjv7\nhttps://github.com/formio/formio/commit/1836bdd9f55f5888ff397c257b2108c09d3de478",
    "id": "CVE-2025-67718",
    "bulletinFamily": "",
    "cwe": [
        "CWE-178",
        "CWE-200"
    ],
    "cvelist": null,
    "sourceData": "formio formio < 3.5.7\nformio formio >= 4.0.0-rc.1, < 4.4.3",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "formio",
    "version": "< 3.5.7",
    "vendor": "formio",
    "ai_description": "Path handling flaw allowing unauthorized access to protected API endpoints",
    "ai_severity": "High",
    "ai_vendor": "Form.io",
    "ai_product": "Form.io",
    "ai_version": "3.5.6 and below, 4.0.0-rc.1 through 4.4.2",
    "ai_score": 8.7
}

Formio improperly authorized permission elevation through specially crafted request path_CVE-2025-67718