Description

In Apache CloudStack, a flaw in access control affects the listTemplates and listIsos APIs. A malicious Domain Admin or Resource Admin can exploit this issue by intentionally specifying the 'domainid' parameter along with the 'filter=self' or 'filter=selfexecutable' values. This allows the attacker to gain unauthorized visibility into templates and ISOs under the ROOT domain. A malicious admin can enumerate and extract metadata of templates and ISOs that belong to unrelated domains, violating isolation boundaries and potentially exposing sensitive or internal configuration details.  This vulnerability has been fixed by ensuring the domain resolution strictly adheres to the caller's scope rather than defaulting to the ROOT domain. Affected users are recommended to upgrade to Apache CloudStack 4.19.3.0 or 4.20.1.0.

INFO

Published Date :

2025-06-10T23:12:23.838Z

Last Modified :

2025-06-11T13:52:21.335Z

Source :

apache
AFFECTED PRODUCTS

The following products are affected by CVE-2025-30675 vulnerability.

Vendors Products
Apache
  • Cloudstack
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-30675.

URL Resource
https://cloudstack.apache.org/blog/cve-advisories-4.19.3.0-4.20.1.0/ cve-icon cve-icon
https://lists.apache.org/thread/y3qnwn59t8qggtdohv7k7vw39bgb3d60 cve-icon cve-icon
https://www.shapeblue.com/shapeblue-security-advisory-apache-cloudstack-security-releases-4-19-3-0-and-4-20-1-0/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact