Privilege Escalation Vulnerability in Open Panel by Open Panel
CVE-2025-25872

5.5MEDIUM

Key Information:

Vendor: Open Panel
Status: Open Panel
Vendor: CVE Published:; 14 March 2025

Summary

An identified flaw in Open Panel version 0.3.4 enables remote attackers to exploit the Fix Permissions function, leading to undesirable privilege escalation. This vulnerability allows unauthorized users to gain elevated access rights, posing significant security risks. It is imperative for users to update to version 0.3.5 or later to mitigate this issue and ensure their systems remain secure.

References

https://openpanel.com/docs/changelog/0.3.5/#%EF%B8%8F-sec...

https://packetstorm.news/files/id/189583

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 14, 2025
Vulnerability Reserved
Feb 7, 2025