Skip to main content

CVE-2024-25301: n/a in n/a

High
VulnerabilityCVE-2024-25301cvecve-2024-25301
Published: Wed Feb 14 2024 (02/14/2024, 00:00:00 UTC)
Source: CVE
Vendor/Project: n/a
Product: n/a

Description

Redaxo v5.15.1 was discovered to contain a remote code execution (RCE) vulnerability via the component /pages/templates.php.

AI-Powered Analysis

AILast updated: 07/03/2025, 15:56:16 UTC

Technical Analysis

CVE-2024-25301 is a high-severity remote code execution (RCE) vulnerability identified in Redaxo version 5.15.1, specifically within the /pages/templates.php component. Redaxo is a content management system (CMS) used for website management and development. The vulnerability is classified under CWE-94, which relates to improper control of code generation, indicating that the flaw likely involves unsafe handling or execution of user-supplied input that leads to arbitrary code execution on the server. The CVSS 3.1 base score of 7.2 reflects a high severity, with the vector indicating that the attack can be performed remotely over the network (AV:N) with low attack complexity (AC:L), but requires high privileges (PR:H) and no user interaction (UI:N). The scope is unchanged (S:U), and the impact on confidentiality, integrity, and availability is high (C:H/I:H/A:H). Although no specific vendor or product details beyond the Redaxo version are provided, the vulnerability allows an attacker with elevated privileges to execute arbitrary code remotely, potentially leading to full system compromise, data theft, or service disruption. No public exploits are currently known, and no patches or mitigation links have been published yet, which may indicate that the vulnerability is newly disclosed and under active analysis or remediation by the vendor.

Potential Impact

For European organizations using Redaxo CMS version 5.15.1, this vulnerability poses a significant risk. Successful exploitation could allow attackers to execute arbitrary code remotely, leading to unauthorized access to sensitive data, defacement or manipulation of web content, disruption of services, or use of compromised servers as a foothold for further attacks within the network. Given the high impact on confidentiality, integrity, and availability, organizations handling personal data under GDPR could face compliance violations and reputational damage. The requirement for high privileges to exploit the vulnerability suggests that attackers would need to first gain elevated access, possibly through other vulnerabilities or credential compromise, but once achieved, the risk is critical. The lack of known exploits in the wild currently reduces immediate risk but does not eliminate it, especially as threat actors may develop exploits rapidly after public disclosure. European organizations relying on Redaxo for public-facing websites or internal portals should consider this vulnerability a priority for investigation and remediation.

Mitigation Recommendations

1. Immediate assessment of Redaxo CMS installations to identify any running version 5.15.1, particularly focusing on the /pages/templates.php component. 2. Restrict access to the CMS backend to trusted IP addresses and enforce strong authentication mechanisms, including multi-factor authentication, to reduce the chance of privilege escalation. 3. Monitor logs for unusual activity or attempts to access the vulnerable component, especially from external sources. 4. Apply any vendor-released patches or updates as soon as they become available; if no patch is currently available, consider temporary mitigations such as disabling or restricting access to the vulnerable component or isolating affected systems. 5. Conduct a thorough review of user privileges within the CMS to ensure least privilege principles are enforced, minimizing the number of users with high-level access. 6. Implement web application firewalls (WAFs) with custom rules to detect and block suspicious payloads targeting code injection or template manipulation. 7. Prepare incident response plans to quickly contain and remediate any exploitation attempts. 8. Engage with Redaxo community or vendor channels for updates and guidance on this vulnerability.

Need more detailed analysis?Get Pro

Technical Details

Data Version
5.1
Assigner Short Name
mitre
Date Reserved
2024-02-07T00:00:00.000Z
Cisa Enriched
true
Cvss Version
3.1
State
PUBLISHED

Threat ID: 682d9816c4522896dcbd6d25

Added to database: 5/21/2025, 9:08:38 AM

Last enriched: 7/3/2025, 3:56:16 PM

Last updated: 7/31/2025, 11:14:26 PM

Views: 15

Actions

PRO

Updates to AI analysis are available only with a Pro account. Contact root@offseq.com for access.

Please log in to the Console to use AI analysis features.

Need enhanced features?

Contact root@offseq.com for Pro access with improved analysis and higher rate limits.

Latest Threats