CVE-2025-23011
Published: 23 January 2025
Summary
CVE-2025-23011 is a high-severity Relative Path Traversal (CWE-23) vulnerability in Fedorarepository Fcrepo. Its CVSS base score is 8.7 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 48.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SA-22 (Unsupported System Components) and SI-10 (Information Input Validation).
Deeper analysis
Fedora Repository 3.8.1 contains a path traversal vulnerability, also known as Zip Slip, that occurs during extraction of uploaded archive files. The flaw is tracked as CWE-23 and carries a CVSS 4.0 score of 8.7. The affected component is the archive-handling logic in this specific release, which has been unsupported since its 2015 publication.
A remote attacker who already possesses an authenticated account can upload a malicious archive containing path traversal sequences. Successful exploitation writes an arbitrary JSP file into a web-accessible directory, after which an unauthenticated GET request can execute the planted code and obtain code execution on the server.
The supplied references direct administrators to the current Fedora Repository release line and to migration utilities hosted on GitHub. They explicitly recommend moving from the unsupported 3.8.1 version to a maintained release such as 6.5.1.
The associated EPSS score remains low, with a recorded peak of only 0.0321.
OWASP Top 10 for Web (2025)
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-3072
Vulnerability details
Fedora Repository 3.8.1 allows path traversal when extracting uploaded archives ("Zip Slip"). A remote, authenticated attacker can upload a specially crafted archive that will extract an arbitrary JSP file to a location that can be executed by an unauthenticated GET…
more
request. Fedora Repository 3.8.1 was released on 2015-06-11 and is no longer maintained. Migrate to a currently supported version (6.5.1 as of 2025-01-23).
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Path traversal in public-facing Fedora Repository archive extraction enables authenticated upload of crafted zip to write executable JSP web shell for RCE via unauthenticated GET.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Flaw remediation directly addresses the path traversal vulnerability in archive extraction by requiring updates to a supported version like 6.5.1.
Prohibits use of unsupported system components like Fedora Repository 3.8.1, which is unmaintained and vulnerable to Zip Slip exploitation.
Information input validation enforces checks on archive paths during extraction to block path traversal attempts outside intended directories.