CVE-2025-32950

MEDIUM

Jmix Framework 1.0.0-1.6.1 and 2.0.0-2.3.4 - Path Traversal via FileRef Parameter

Title source: llm
STIX 2.1

Description

Jmix is a set of libraries and tools to speed up Spring Boot data-centric application development. In versions 1.0.0 to 1.6.1 and 2.0.0 to 2.3.4, attackers could manipulate the FileRef parameter to access files on the system where the Jmix application is deployed, provided the application server has the necessary permissions. This can be accomplished either by modifying the FileRef directly in the database or by supplying a harmful value in the fileRef parameter of the `/files` endpoint of the generic REST API. This issue has been patched in versions 1.6.2 and 2.4.0. A workaround is provided on the Jmix documentation website.

References (9)

Core 9
Core References
Issue Tracking x_refsource_misc
https://github.com/jmix-framework/jmix/issues/3804
Issue Tracking x_refsource_misc
https://github.com/jmix-framework/jmix/issues/3836
Vendor Advisory x_refsource_misc
https://docs.jmix.io/jmix/files-vulnerabilities.html

Scores

CVSS v3 6.5
EPSS 0.0057
EPSS Percentile 42.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-22 CWE-35
Status published
Products (2)
haulmont/jmix_framework 1.0.0 - 1.6.2
io.jmix.localfs/jmix-localfs 1.0.0 - 1.6.2Maven
Published Apr 22, 2025
Tracked Since Feb 18, 2026