Cyber Resilience

CVE-2025-27149

Medium

Published: 31 March 2025

Published
31 March 2025
Modified
27 September 2025
KEV Added
Patch
CVSS Score v4 4.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0024 47.6th percentile
Risk Priority 9 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-27149 is a medium-severity Exposure of Sensitive System Information to an Unauthorized Control Sphere (CWE-497) vulnerability in Zulip Zulip Server. Its CVSS base score is 4.6 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Messaging Applications (T1213.005); ranked at the 47.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Zulip server provides an open-source team chat that helps teams stay productive and focused. Prior to 10.0, the data export to organization administrators feature in Zulip leaks private data. The collection of user-agent types identifying specific integrations or HTTP libraries…

more

(E.g., ZulipGitlabWebhook, okhttp, or PycURL) that have been used to access any organization on the server was incorrectly included in all three export types, regardless of if they were used to access the exported organization or not. The "public data" and "with consent" exports metadata including the titles of some topics in private channels which the administrator otherwise did not have access to, and none of the users consented to exporting and metadata for which users were in a group DM together. This vulnerability is fixed in 10.0.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1213.005 Messaging Applications Collection
Adversaries may leverage chat and messaging applications, such as Microsoft Teams, Google Chat, and Slack, to mine valuable information.
T1518 Software Discovery Discovery
Adversaries may attempt to get a listing of software and software versions that are installed on a system or in a cloud environment.
Why these techniques?

Vulnerability leaks metadata from private channels/topics, group DMs, and user-agent strings identifying integrations/software (e.g., ZulipGitlabWebhook) via administrative data exports, enabling collection from messaging applications and software discovery.

Affected Assets

zulip
zulip server
2.1.0 — 10.0

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-497

Ongoing reviews detect and remove sensitive system information before it reaches publicly accessible systems.

addresses: CWE-497

Employs detection to prevent unauthorized mining of sensitive system information from being exfiltrated to external control spheres.

addresses: CWE-497

Documenting where system information is processed and stored prevents exposure to unauthorized control spheres.

addresses: CWE-497

The control stops sensitive system information from crossing into unauthorized control spheres through EM emanations.

addresses: CWE-497

Authorization and minimization requirements keep PII out of test/research control spheres that often lack production-grade protections.

addresses: CWE-497

Documented categorization of system information reduces the chance that sensitive internals are left exposed to unauthorized spheres.

addresses: CWE-497

System information is concealed or replaced with decoys, reducing leakage to unauthorized observers.

addresses: CWE-497

Ensures sensitive system information is not disclosed outside the intended control sphere through error output.

References