CVE-2025-21609

SiYuan is self-hosted, open source personal knowledge management software. SiYuan Note version 3.1.18 has an arbitrary file deletion vulnerability. The vulnerability exists in the `POST /api/history/getDocHistoryContent` endpoint. An attacker can craft a payload to exploit this vulnerability, resulting in the deletion of arbitrary files on the server. Commit d9887aeec1b27073bec66299a9a4181dc42969f3 fixes this vulnerability and is expected to be available in version 3.1.19.

CVSS v3 9.1 CRITICAL

9.1^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/siyuan-note/siyuan/commit/d9887aeec1b27073bec66299a9a4181dc42969f3	Patch
https://github.com/siyuan-note/siyuan/security/advisories/GHSA-8fx8-pffw-w498	Exploit Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:b3log:siyuan:3.1.18:-:*:*:*:*:*:*

History

14 May 2025, 14:39

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.1
CPE		cpe:2.3:a:b3log:siyuan:3.1.18:-::::::
First Time		B3log siyuan B3log
References	~~() https://github.com/siyuan-note/siyuan/commit/d9887aeec1b27073bec66299a9a4181dc42969f3 -~~	() https://github.com/siyuan-note/siyuan/commit/d9887aeec1b27073bec66299a9a4181dc42969f3 - Patch
References	~~() https://github.com/siyuan-note/siyuan/security/advisories/GHSA-8fx8-pffw-w498 -~~	() https://github.com/siyuan-note/siyuan/security/advisories/GHSA-8fx8-pffw-w498 - Exploit, Vendor Advisory
Summary		(es) SiYuan es un software de gestión de conocimiento personal de código abierto y alojado por el usuario. La versión 3.1.18 de SiYuan Note tiene una vulnerabilidad de eliminación de archivos arbitrarios. La vulnerabilidad existe en el endpoint `POST /api/history/getDocHistoryContent`. Un atacante puede crear un payload para explotar esta vulnerabilidad, lo que da como resultado la eliminación de archivos arbitrarios en el servidor. El commit d9887aeec1b27073bec66299a9a4181dc42969f3 corrige esta vulnerabilidad y se espera que esté disponible en la versión 3.1.19.

03 Jan 2025, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-01-03 17:15

Updated : 2025-05-14 14:39

NVD link : CVE-2025-21609

Mitre link : CVE-2025-21609

CVE.ORG link : CVE-2025-21609

JSON object : View

Products Affected

b3log

siyuan

CWE

CWE-459

Incomplete Cleanup

CWE-552

Files or Directories Accessible to External Parties

9.1 /10