CVE-2025-27888

Published Mar 20, 2025

Last updated 6 days ago

CVSS medium 5.8
Apache Druid

Overview

AI description

Generated using AI and has not been reviewed by Intruder. May contain errors.

CVE-2025-27888 is a security vulnerability found in Apache Druid versions prior to 31.0.2 and 32.0.1. It is a combination of Server-Side Request Forgery (SSRF), Cross-Site Scripting (XSS), and Open Redirect vulnerabilities. When the Druid management proxy is enabled, a specially crafted URL can redirect requests to an arbitrary server. An attacker needs to be authenticated to exploit this flaw. Successful exploitation could lead to redirection to malicious websites, token theft, or cross-site request forgery (XSRF). The management proxy is enabled by default in Druid's default configuration, which magnifies the risk. Users are recommended to upgrade to Druid 31.0.2 or 32.0.1 to mitigate the vulnerability.

Description
Severity: medium (5.8) / important Server-Side Request Forgery (SSRF), Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'), URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Apache Druid. This issue affects all previous Druid versions. When using the Druid management proxy, a request that has a specially crafted URL could be used to redirect the request to an arbitrary server instead. This has the potential for XSS or XSRF. The user is required to be authenticated for this exploit. The management proxy is enabled in Druid's out-of-box configuration. It may be disabled to mitigate this vulnerability. If the management proxy is disabled, some web console features will not work properly, but core functionality is unaffected. Users are recommended to upgrade to Druid 31.0.2 or Druid 32.0.1, which fixes the issue.
Source
security@apache.org
NVD status
Received

Risk scores

CVSS 4.0

Type
Secondary
Base score
5.8
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
MEDIUM

Weaknesses

security@apache.org
CWE-79

Social media

Hype score
Not currently trending

  1. CVE-2025-27888: Apache Druid Flaw Opens Door to SSRF and XSS Risks in Real-Time Analytics Platforms https://t.co/TRwDiEcafR

    @Dinosn

    23 Mar 2025

    4805 Impressions

    32 Retweets

    91 Likes

    23 Bookmarks

    2 Replies

    0 Quotes

  2. Apacheは、Apache Druidに深刻な脆弱性(CVE-2025-27888)を公開。SSRF、XSS、オープンリダイレクトの複合型で、管理プロキシ経由で悪意あるリダイレクトが可能に。認証済みの攻撃者が被害者をフィッシング等に誘導する恐れがある。 https://t.co/2wSCTcGY5g

    @yousukezan

    23 Mar 2025

    1227 Impressions

    0 Retweets

    12 Likes

    3 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-27888 Severity: medium (5.8) / important Server-Side Request Forgery (SSRF), Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'), URL Redi… https://t.co/tx1tI4iWtq

    @CVEnew

    20 Mar 2025

    414 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References