CVE-2026-42609

Exploit

EPSS 0.46%
Veröffentlicht 11.05.2026 16:17:33
Zuletzt bearbeitet 14.05.2026 18:16:48
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Grav: Administrative Account Disruption and Privilege De-escalation via User Overwrite Logic

Grav is a file-based Web platform. Prior to 2.0.0-beta.2, a business logic vulnerability in the Grav Admin Panel allows a low-privileged user (with only user creation permissions) to overwrite existing accounts, including the primary administrator. By creating a new user with a username that already exists, the system updates the existing account's metadata and permissions instead of rejecting the request. This leads to a Denial of Service (DoS) on administrative functions and Privilege De-escalation of the root account. This vulnerability is fixed in 2.0.0-beta.2.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 4 Referenzen 7

NVD 2 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Getgrav ≫ Grav Version <= 1.8.0

Getgrav ≫ Grav Version2.0.0 Updatebeta1

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.46%	0.365

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	8.1	2.8	5.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CWE-285 Improper Authorization

The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.

CWE-639 Authorization Bypass Through User-Controlled Key

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

CWE-837 Improper Enforcement of a Single, Unique Action

The product requires that an actor should only be able to perform an action once, or to have only one unique action, but the product does not enforce or improperly enforces this restriction.

https://github.com/getgrav/grav/commit/5a12f9be8314682c8713e569e330f11805d0a663

Patch

https://github.com/getgrav/grav/commit/c66dfeb5ff679a1667678c6335eb9ff3255dfc47

Patch

https://github.com/getgrav/grav/commit/d904efc33e03ebb597afde8d3368b28cf0423632

Patch

https://github.com/getgrav/grav/security/advisories/GHSA-rr73-568v-28f8

Patch

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2026-42609

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-42609

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-42609

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-42609