CVE-2025-54955

Name
CVE-2025-54955
Description
OpenNebula Community Edition (CE) before 7.0.0 and Enterprise Edition (EE) before 6.10.3 have a critical FireEdge race condition that can lead to full account takeover. By exploiting this, an unauthenticated attacker can obtain a valid JSON Web Token (JWT) belonging to a legitimate user without knowledge of their credentials.
NVD Severity
high
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
cve@mitre.org https://docs.opennebula.io/6.10/intro_release_notes/release_notes_enterprise/resolved_issues_6103.html
cve@mitre.org https://github.com/OpenNebula/one
cve@mitre.org https://github.com/OpenNebula/one/commit/81058d9705e7ac619d294423de28b76d88f613b6
cve@mitre.org https://github.com/OpenNebula/one/releases/tag/release-7.0.0
cve@mitre.org https://github.com/Stolichnayer/OpenNebula-Account-Takeover

Match rules

CPE URI Source package Min version Max version
opennebula >= Enterprise Edition < 6.10.3
opennebula >= Community Edition < 7.0.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
opennebula edge-community 6.8.3-r0 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opennebula edge-community 6.10.0-r0 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opennebula edge-community 6.10.0-r1 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opennebula edge-community 6.10.2-r0 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opennebula 3.22-community 6.10.0-r0 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable
opennebula 3.22-community 6.10.2-r0 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable