{"id":"CVE-2025-32017","summary":"Umbraco has a Management API Vulnerability to Path Traversal With Authenticated Users","details":"Umbraco is a free and open source .NET content management system. Authenticated users to the Umbraco backoffice are able to craft management API request that exploit a path traversal vulnerability to upload files into a incorrect location. The issue affects Umbraco 14+ and is patched in 14.3.4 and 15.3.1.","aliases":["GHSA-q62r-8ppj-xvf4"],"modified":"2026-04-10T05:25:06.443116Z","published":"2025-04-08T15:37:23.733Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/32xxx/CVE-2025-32017.json","cna_assigner":"GitHub_M","cwe_ids":["CWE-23"]},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/32xxx/CVE-2025-32017.json"},{"type":"ADVISORY","url":"https://github.com/umbraco/Umbraco-CMS/security/advisories/GHSA-q62r-8ppj-xvf4"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-32017"},{"type":"FIX","url":"https://github.com/umbraco/Umbraco-CMS/commit/06a2a500b358ce15b1e228391eb60bd517c6e833"},{"type":"FIX","url":"https://github.com/umbraco/Umbraco-CMS/commit/d3c1443b14b1076faf13d1bcecc42860fdf5fad8"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/umbraco/umbraco-cms","events":[{"introduced":"789c47eb98246540267283eb665a718e98ea36cc"},{"fixed":"d3c1443b14b1076faf13d1bcecc42860fdf5fad8"}],"database_specific":{"versions":[{"introduced":"14.0.0--preview004"},{"fixed":"14.3.4"}]}},{"type":"GIT","repo":"https://github.com/umbraco/umbraco-cms","events":[{"introduced":"118029659a5bac0678362a8cefff1467ce6dafa3"},{"fixed":"06a2a500b358ce15b1e228391eb60bd517c6e833"}],"database_specific":{"versions":[{"introduced":"15.0.0-rc1"},{"fixed":"15.3.1"}]}}],"versions":["release-14.0.0--preview004","release-14.0.0--preview005","release-14.0.0--preview006","release-14.3.0","release-14.3.0-rc","release-14.3.1","release-14.3.2","release-14.3.3","v14.0.0--preview005"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-32017.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}