CVE-2025-32950

MEDIUM

Haulmont Jmix Framework < 1.6.2 - Path Traversal

Title source: rule

Description

Jmix is a set of libraries and tools to speed up Spring Boot data-centric application development. In versions 1.0.0 to 1.6.1 and 2.0.0 to 2.3.4, attackers could manipulate the FileRef parameter to access files on the system where the Jmix application is deployed, provided the application server has the necessary permissions. This can be accomplished either by modifying the FileRef directly in the database or by supplying a harmful value in the fileRef parameter of the `/files` endpoint of the generic REST API. This issue has been patched in versions 1.6.2 and 2.4.0. A workaround is provided on the Jmix documentation website.

References (9)

[Vendor Advisory] https://github.com/jmix-framework/jmix/security/advisories/GHSA-jx4g-3xqm-62vh

[Issue Tracking] https://github.com/jmix-framework/jmix/issues/3804

[Issue Tracking] https://github.com/jmix-framework/jmix/issues/3836

[Patch] https://github.com/jmix-framework/jmix/commit/6a66aa3adb967159a30d703e80403406f4c8f7a2

[Patch] https://github.com/jmix-framework/jmix/commit/c589ef4e2b25620770b8036f4ad05f1a6250cb6a

[Patch] https://github.com/jmix-framework/jmix/commit/cc97e6ff974b9e7af8160fab39cc5866169daa37

[Patch] https://github.com/jmix-framework/jmix/commit/f4e6fb05bd245cf36f3e9319aaa0fcd540d024aa

View Patch ZIP pw:eip

[Vendor Advisory] https://docs.jmix.io/jmix/files-vulnerabilities.html

[Vendor Advisory] https://docs.jmix.io/jmix/files-vulnerabilities.html#fix-path-traversal-in-jmix-application

Scores

CVSS v3 6.5

EPSS 0.0051

EPSS Percentile 66.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-22 CWE-35

Status published

Products (2)

haulmont/jmix_framework 1.0.0 - 1.6.2

io.jmix.localfs/jmix-localfs 1.0.0 - 1.6.2Maven

Published Apr 22, 2025

Tracked Since Feb 18, 2026