CVE-2025-2304 — Camaleon CMS Vulnerable to Privilege Escalation through a Mass Assignment

Description

A Privilege Escalation through a Mass Assignment exists in Camaleon CMS When a user wishes to change his password, the 'updated_ajax' method of the UsersController is called. The vulnerability stems from the use of the dangerous permit! method, which allows all parameters to pass through without any filtering.

How to fix CVE-2025-2304

To remediate CVE-2025-2304, upgrade the affected package to a fixed version below.

RubyGems/camaleon_cms—upgrade to 2.9.1 or later

Is CVE-2025-2304 being exploited?

Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0, < 2.9.1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 4.0	—	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

References (7)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2025-2304
PATCHgithub.com/owen2345/camaleon-cms
WEBgithub.com/owen2345/camaleon-cms/commit/179fd6b1ecf258d3e214aebfa87ac4a322ea4db4
WEBgithub.com/owen2345/camaleon-cms/pull/1109