vulnerability
FreeBSD: VID-0a8dbc7f-bedc-11ef-b5a1-000ec6d40964: Vaultwarden -- Admin organization permissions
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:N/I:C/A:N) | Dec 20, 2024 | Dec 22, 2024 | Dec 10, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:N/I:C/A:N)
Published
Dec 20, 2024
Added
Dec 22, 2024
Modified
Dec 10, 2025
Description
The Vaultwarden project reports: Admins from any organization were able to modify or delete groups in any other organization if they know the group's uuid.
Solution
freebsd-upgrade-package-vaultwarden
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.