Vulnerability-Lookup

Vulnerability from drupal

Published

2025-05-21 17:29

Modified

2025-05-21 17:29

Summary

Details

The Admin Audit Trail module tracks logs of specific events that you'd like to review. When the submodule Admin Audit Trail: User Authentication is enabled, it logs user authentication events (login, logout, and password reset requests).

The module does not sufficiently limit some large values before logging the data.

Credits

Scott Phillips (scottatdrake) www.drupal.org/u/scottatdrake

References

URL

Type

https://www.drupal.org/sa-contrib-2025-068

WEB

JSON

To clipboard

{
  "affected": [
    {
      "database_specific": {
        "affected_versions": "\u003c1.0.5"
      },
      "package": {
        "ecosystem": "Packagist:https://packages.drupal.org/8",
        "name": "drupal/admin_audit_trail"
      },
      "ranges": [
        {
          "database_specific": {
            "constraint": "\u003c1.0.5"
          },
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.0.5"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "severity": []
    }
  ],
  "aliases": [
    "CVE-2025-48448"
  ],
  "credits": [
    {
      "contact": [
        "https://www.drupal.org/u/scottatdrake"
      ],
      "name": "Scott Phillips (scottatdrake)"
    }
  ],
  "details": "The Admin Audit Trail module tracks logs of specific events that you\u0027d like to review. When the submodule Admin Audit Trail: User Authentication is enabled, it logs user authentication events (login, logout, and password reset requests).\n\nThe module does not sufficiently limit some large values before logging the data.",
  "id": "DRUPAL-CONTRIB-2025-068",
  "modified": "2025-05-21T17:29:14.000Z",
  "published": "2025-05-21T17:29:14.000Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://www.drupal.org/sa-contrib-2025-068"
    }
  ],
  "schema_version": "1.7.0"
}

CVE-2025-48448 (GCVE-0-2025-48448)

Vulnerability from cvelistv5 – Published: 2025-06-11 14:36 – Updated: 2025-06-11 15:45

Title

Admin Audit Trail - Less critical - Denial of Service - SA-CONTRIB-2025-068

Summary

Allocation of Resources Without Limits or Throttling vulnerability in Drupal Admin Audit Trail allows Excessive Allocation.This issue affects Admin Audit Trail: from 0.0.0 before 1.0.5.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-770 - Allocation of Resources Without Limits or Throttling

Assigner

drupal

References

1 reference

URL	Tags
https://www.drupal.org/sa-contrib-2025-068

Impacted products

1 product

Vendor	Product	Version
Drupal	Admin Audit Trail	Affected: 0.0.0 , < 1.0.5 (semver)

Date Public

2025-05-21 17:29

Credits

Scott Phillips (scottatdrake) Rajab Natshah (rajab natshah) Greg Knaddison (greggles) Juraj Nemec (poker10)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 6.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-48448",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-06-11T15:43:45.278627Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-11T15:45:14.796Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://www.drupal.org/project/admin_audit_trail",
          "defaultStatus": "unaffected",
          "product": "Admin Audit Trail",
          "repo": "https://git.drupalcode.org/project/admin_audit_trail",
          "vendor": "Drupal",
          "versions": [
            {
              "lessThan": "1.0.5",
              "status": "affected",
              "version": "0.0.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Scott Phillips (scottatdrake)"
        },
        {
          "lang": "en",
          "type": "remediation developer",
          "value": "Rajab Natshah (rajab natshah)"
        },
        {
          "lang": "en",
          "type": "coordinator",
          "value": "Greg Knaddison (greggles)"
        },
        {
          "lang": "en",
          "type": "coordinator",
          "value": "Juraj Nemec (poker10)"
        }
      ],
      "datePublic": "2025-05-21T17:29:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Allocation of Resources Without Limits or Throttling vulnerability in Drupal Admin Audit Trail allows Excessive Allocation.\u003cp\u003eThis issue affects Admin Audit Trail: from 0.0.0 before 1.0.5.\u003c/p\u003e"
            }
          ],
          "value": "Allocation of Resources Without Limits or Throttling vulnerability in Drupal Admin Audit Trail allows Excessive Allocation.This issue affects Admin Audit Trail: from 0.0.0 before 1.0.5."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-130",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-130 Excessive Allocation"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-770",
              "description": "CWE-770 Allocation of Resources Without Limits or Throttling",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-06-11T14:36:15.275Z",
        "orgId": "2c85b837-eb8b-40ed-9d74-228c62987387",
        "shortName": "drupal"
      },
      "references": [
        {
          "url": "https://www.drupal.org/sa-contrib-2025-068"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Admin Audit Trail - Less critical - Denial of Service - SA-CONTRIB-2025-068",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "2c85b837-eb8b-40ed-9d74-228c62987387",
    "assignerShortName": "drupal",
    "cveId": "CVE-2025-48448",
    "datePublished": "2025-06-11T14:36:15.275Z",
    "dateReserved": "2025-05-21T16:25:07.435Z",
    "dateUpdated": "2025-06-11T15:45:14.796Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

Vulnerability from drupal

CVE-2025-48448 (GCVE-0-2025-48448)

Tags

Sightings

Nomenclature