CVE-2025-67845 is a directory traversal vulnerability classified under CWE-24, found in the Static Asset Proxy Endpoint of the Mintlify Platform prior to version 2025-11-15. This vulnerability allows remote attackers who have at least limited privileges (PR:L) to craft URLs containing path traversal sequences (e.g., '../filedir') that bypass normal file path restrictions. By exploiting this, attackers can inject arbitrary web scripts or HTML content, potentially leading to cross-site scripting (XSS) or other injection-based attacks. The vulnerability does not require user interaction (UI:N) and can be exploited over the network (AV:N). The scope is changed (S:C), meaning the vulnerability can affect resources beyond the initially vulnerable component, potentially impacting other parts of the system. The impact primarily affects confidentiality and integrity, allowing attackers to read or manipulate files that should be inaccessible, but it does not affect availability. The CVSS 3.1 base score is 6.4, indicating a medium severity level. No public exploits or patches are currently reported, but the vulnerability is publicly disclosed and should be addressed promptly. The root cause is insufficient validation or sanitization of file path inputs in the Static Asset Proxy Endpoint, enabling directory traversal attacks.

For European organizations using the Mintlify Platform, this vulnerability could lead to unauthorized disclosure of sensitive information and unauthorized modification of web content or scripts. This can facilitate further attacks such as phishing, session hijacking, or malware distribution through injected scripts. Although availability is not impacted, the compromise of confidentiality and integrity can damage organizational reputation, lead to data breaches, and result in regulatory non-compliance under GDPR. Organizations relying on Mintlify for documentation or static asset delivery are at risk of attackers exploiting this vulnerability to escalate privileges or pivot within their networks. The lack of known exploits in the wild reduces immediate risk but does not eliminate the threat, especially as attackers may develop exploits following public disclosure.

Organizations should immediately verify their Mintlify Platform version and upgrade to the fixed version released after 2025-11-15 once available. Until a patch is applied, implement strict input validation and sanitization on all URL parameters, especially those used in file path resolution within the Static Asset Proxy Endpoint. Employ web application firewalls (WAFs) with rules to detect and block path traversal sequences such as '../' in URLs. Conduct thorough code reviews and penetration testing focused on directory traversal and injection vulnerabilities. Restrict permissions on file system resources accessed by the Mintlify Platform to minimize the impact of any successful traversal. Monitor logs for suspicious URL access patterns indicative of exploitation attempts. Educate developers and administrators about secure coding practices related to path handling. Finally, maintain an incident response plan to quickly address any exploitation attempts.