Missing Authorization vulnerability in Wikimedia Foundation Mediawiki - AbuseFilter Extension allows Unauthorized Access.This issue affects Mediawiki - AbuseFilter Extension: from 1.43.X before 1.43.2.
History

Tue, 08 Jul 2025 20:15:00 +0000

Type Values Removed Values Added
Description Missing Authorization vulnerability in Wikimedia Foundation Mediawiki - AbuseFilter Extension allows Unauthorized Access.This issue affects Mediawiki - AbuseFilter Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2. Missing Authorization vulnerability in Wikimedia Foundation Mediawiki - AbuseFilter Extension allows Unauthorized Access.This issue affects Mediawiki - AbuseFilter Extension: from 1.43.X before 1.43.2.

Tue, 08 Jul 2025 18:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 07 Jul 2025 19:00:00 +0000

Type Values Removed Values Added
Description Missing Authorization vulnerability in Wikimedia Foundation Mediawiki - AbuseFilter Extension allows Unauthorized Access.This issue affects Mediawiki - AbuseFilter Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2.
Title Unauthorized Disclosure of IP Reputation in AbuseFilter
Weaknesses CWE-862
References

cve-icon MITRE

Status: PUBLISHED

Assigner: wikimedia-foundation

Published: 2025-07-07T18:30:31.465Z

Updated: 2025-07-08T20:06:40.733Z

Reserved: 2025-06-30T15:36:34.120Z

Link: CVE-2025-53495

cve-icon Vulnrichment

Updated: 2025-07-08T14:33:28.724Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-07-07T19:15:23.540

Modified: 2025-07-08T20:15:30.183

Link: CVE-2025-53495

cve-icon Redhat

No data.