CVE-2026-32101

Exploit

EPSS 0.18%
Veröffentlicht 11.03.2026 20:03:05
Zuletzt bearbeitet 17.03.2026 15:24:39
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check

StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.3.1, the S3 storage manager's isAuthorized() function is declared async (returns Promise<boolean>) but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in JavaScript, !isAuthorized(type) always evaluates to false, completely bypassing the authorization check. Any authenticated user with the lowest visitor role can upload, delete, rename, and list all files in the S3 bucket. This vulnerability is fixed in 0.3.1.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Studiocms ≫ Studiocms Version < 0.3.1

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.18%	0.08

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.3	2.8	3.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
security-advisories@github.com	7.6	2.8	4.7	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

CWE-863 Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

https://github.com/withstudiocms/studiocms/security/advisories/GHSA-mm78-fgq8-6pgr

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2026-32101

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-32101

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-32101

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-32101