CVE-2025-24337
Published: 20 January 2025
Summary
CVE-2025-24337 is a high-severity Improper Preservation of Permissions (CWE-281) vulnerability in Raphus (inferred from references). Its CVSS base score is 8.4 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Credentials In Files (T1552.001); ranked at the 17.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and AC-6 (Least Privilege).
Deeper analysis
CVE-2025-24337 is a vulnerability in WriteFreely through version 0.15.1 when MySQL is used as the database backend. It allows local users to discover credentials by reading the config.ini file. The issue carries a CVSS v3.1 base score of 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) and maps to CWE-281.
A local attacker requires access to the host system but no privileges or user interaction to exploit the vulnerability. By reading the config.ini file, the attacker can obtain sensitive credentials, enabling high-impact effects on confidentiality, integrity, and availability as scored by CVSS.
Advisories and patches are detailed in the WriteFreely release notes for v0.15.1 at https://github.com/writefreely/writefreely/releases/tag/v0.15.1, an announcement at https://raphus.social/@TV4Fun/113846757112643161, and the OSS-security mailing list post at https://www.openwall.com/lists/oss-security/2025/01/18/1.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-0126
Vulnerability details
WriteFreely through 0.15.1, when MySQL is used, allows local users to discover credentials by reading config.ini.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The vulnerability directly enables local credential discovery by allowing unauthenticated reading of sensitive credentials stored in the config.ini file.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Employs least privilege to restrict unprivileged local users from reading sensitive config.ini files containing MySQL credentials.
Enforces approved logical access authorizations to system resources like config.ini, preventing local unauthorized reads of credentials.
Mandates secure configuration settings including restrictive file permissions on config.ini to protect embedded database credentials from local access.