Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-24897

Misskey is an open source, federated social media platform. Starting in version 12.109.0 and prior to version 2025.2.0-alpha.0, due to a lack of CSRF protection and the lack of proper security attributes in the authentication cookies of Bull's dashboard, some of the APIs of bull-board may be subject to CSRF attacks. There is a risk of this vulnerability being used for attacks with relatively large impact on availability and integrity, such as the ability to add arbitrary jobs. This vulnerability was fixed in 2025.2.0-alpha.0. As a workaround, block all access to the `/queue` directory with a web application firewall (WAF).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.8%
CVSS Severity
CVSS v3 Score 8.2
Products affected by CVE-2025-24897
  • Misskey » Misskey » Version: 12.109.0
    cpe:2.3:a:misskey:misskey:12.109.0
  • Misskey » Misskey » Version: 12.109.1
    cpe:2.3:a:misskey:misskey:12.109.1
  • Misskey » Misskey » Version: 12.109.2
    cpe:2.3:a:misskey:misskey:12.109.2
  • Misskey » Misskey » Version: 12.110.0
    cpe:2.3:a:misskey:misskey:12.110.0
  • Misskey » Misskey » Version: 12.110.1
    cpe:2.3:a:misskey:misskey:12.110.1
  • Misskey » Misskey » Version: 12.111.0
    cpe:2.3:a:misskey:misskey:12.111.0
  • Misskey » Misskey » Version: 12.111.1
    cpe:2.3:a:misskey:misskey:12.111.1
  • Misskey » Misskey » Version: 12.112.0
    cpe:2.3:a:misskey:misskey:12.112.0
  • Misskey » Misskey » Version: 12.112.1
    cpe:2.3:a:misskey:misskey:12.112.1
  • Misskey » Misskey » Version: 12.112.2
    cpe:2.3:a:misskey:misskey:12.112.2
  • Misskey » Misskey » Version: 12.112.3
    cpe:2.3:a:misskey:misskey:12.112.3
  • Misskey » Misskey » Version: 12.113.0
    cpe:2.3:a:misskey:misskey:12.113.0
  • Misskey » Misskey » Version: 12.114.0
    cpe:2.3:a:misskey:misskey:12.114.0
  • Misskey » Misskey » Version: 12.115.0
    cpe:2.3:a:misskey:misskey:12.115.0
  • Misskey » Misskey » Version: 12.116.0
    cpe:2.3:a:misskey:misskey:12.116.0
  • Misskey » Misskey » Version: 12.116.1
    cpe:2.3:a:misskey:misskey:12.116.1
  • Misskey » Misskey » Version: 12.117.0
    cpe:2.3:a:misskey:misskey:12.117.0
  • Misskey » Misskey » Version: 12.117.1
    cpe:2.3:a:misskey:misskey:12.117.1
  • Misskey » Misskey » Version: 12.118.0
    cpe:2.3:a:misskey:misskey:12.118.0
  • Misskey » Misskey » Version: 12.118.1
    cpe:2.3:a:misskey:misskey:12.118.1
  • Misskey » Misskey » Version: 12.119.0
    cpe:2.3:a:misskey:misskey:12.119.0
  • Misskey » Misskey » Version: 12.119.1
    cpe:2.3:a:misskey:misskey:12.119.1
  • Misskey » Misskey » Version: 12.119.2
    cpe:2.3:a:misskey:misskey:12.119.2
  • Misskey » Misskey » Version: 13.0.0
    cpe:2.3:a:misskey:misskey:13.0.0
  • Misskey » Misskey » Version: 13.1.0
    cpe:2.3:a:misskey:misskey:13.1.0
  • Misskey » Misskey » Version: 13.1.1
    cpe:2.3:a:misskey:misskey:13.1.1
  • Misskey » Misskey » Version: 13.1.2
    cpe:2.3:a:misskey:misskey:13.1.2
  • Misskey » Misskey » Version: 13.1.3
    cpe:2.3:a:misskey:misskey:13.1.3
  • Misskey » Misskey » Version: 13.1.4
    cpe:2.3:a:misskey:misskey:13.1.4
  • Misskey » Misskey » Version: 13.1.5
    cpe:2.3:a:misskey:misskey:13.1.5
  • Misskey » Misskey » Version: 13.1.6
    cpe:2.3:a:misskey:misskey:13.1.6
  • Misskey » Misskey » Version: 13.1.7
    cpe:2.3:a:misskey:misskey:13.1.7
  • Misskey » Misskey » Version: 13.1.8
    cpe:2.3:a:misskey:misskey:13.1.8
  • Misskey » Misskey » Version: 13.10.0
    cpe:2.3:a:misskey:misskey:13.10.0
  • Misskey » Misskey » Version: 13.10.1
    cpe:2.3:a:misskey:misskey:13.10.1
  • Misskey » Misskey » Version: 13.10.2
    cpe:2.3:a:misskey:misskey:13.10.2
  • Misskey » Misskey » Version: 13.10.3
    cpe:2.3:a:misskey:misskey:13.10.3
  • Misskey » Misskey » Version: 13.11.0
    cpe:2.3:a:misskey:misskey:13.11.0
  • Misskey » Misskey » Version: 13.11.1
    cpe:2.3:a:misskey:misskey:13.11.1
  • Misskey » Misskey » Version: 13.11.2
    cpe:2.3:a:misskey:misskey:13.11.2
  • Misskey » Misskey » Version: 13.11.3
    cpe:2.3:a:misskey:misskey:13.11.3
  • Misskey » Misskey » Version: 13.12.0
    cpe:2.3:a:misskey:misskey:13.12.0
  • Misskey » Misskey » Version: 13.12.1
    cpe:2.3:a:misskey:misskey:13.12.1
  • Misskey » Misskey » Version: 13.12.2
    cpe:2.3:a:misskey:misskey:13.12.2
  • Misskey » Misskey » Version: 13.13.0
    cpe:2.3:a:misskey:misskey:13.13.0
  • Misskey » Misskey » Version: 13.13.1
    cpe:2.3:a:misskey:misskey:13.13.1
  • Misskey » Misskey » Version: 13.13.2
    cpe:2.3:a:misskey:misskey:13.13.2
  • Misskey » Misskey » Version: 13.14.0
    cpe:2.3:a:misskey:misskey:13.14.0
  • Misskey » Misskey » Version: 13.14.1
    cpe:2.3:a:misskey:misskey:13.14.1
  • Misskey » Misskey » Version: 13.14.2
    cpe:2.3:a:misskey:misskey:13.14.2
  • Misskey » Misskey » Version: 13.2.0
    cpe:2.3:a:misskey:misskey:13.2.0
  • Misskey » Misskey » Version: 13.2.1
    cpe:2.3:a:misskey:misskey:13.2.1
  • Misskey » Misskey » Version: 13.2.2
    cpe:2.3:a:misskey:misskey:13.2.2
  • Misskey » Misskey » Version: 13.2.3
    cpe:2.3:a:misskey:misskey:13.2.3
  • Misskey » Misskey » Version: 13.2.4
    cpe:2.3:a:misskey:misskey:13.2.4
  • Misskey » Misskey » Version: 13.2.5
    cpe:2.3:a:misskey:misskey:13.2.5
  • Misskey » Misskey » Version: 13.2.6
    cpe:2.3:a:misskey:misskey:13.2.6
  • Misskey » Misskey » Version: 13.3.0
    cpe:2.3:a:misskey:misskey:13.3.0
  • Misskey » Misskey » Version: 13.3.1
    cpe:2.3:a:misskey:misskey:13.3.1
  • Misskey » Misskey » Version: 13.3.2
    cpe:2.3:a:misskey:misskey:13.3.2
  • Misskey » Misskey » Version: 13.3.3
    cpe:2.3:a:misskey:misskey:13.3.3
  • Misskey » Misskey » Version: 13.3.4
    cpe:2.3:a:misskey:misskey:13.3.4
  • Misskey » Misskey » Version: 13.4.0
    cpe:2.3:a:misskey:misskey:13.4.0
  • Misskey » Misskey » Version: 13.5.0
    cpe:2.3:a:misskey:misskey:13.5.0
  • Misskey » Misskey » Version: 13.5.1
    cpe:2.3:a:misskey:misskey:13.5.1
  • Misskey » Misskey » Version: 13.5.2
    cpe:2.3:a:misskey:misskey:13.5.2
  • Misskey » Misskey » Version: 13.5.3
    cpe:2.3:a:misskey:misskey:13.5.3
  • Misskey » Misskey » Version: 13.5.4
    cpe:2.3:a:misskey:misskey:13.5.4
  • Misskey » Misskey » Version: 13.5.5
    cpe:2.3:a:misskey:misskey:13.5.5
  • Misskey » Misskey » Version: 13.5.6
    cpe:2.3:a:misskey:misskey:13.5.6
  • Misskey » Misskey » Version: 13.6.0
    cpe:2.3:a:misskey:misskey:13.6.0
  • Misskey » Misskey » Version: 13.6.1
    cpe:2.3:a:misskey:misskey:13.6.1
  • Misskey » Misskey » Version: 13.7.0
    cpe:2.3:a:misskey:misskey:13.7.0
  • Misskey » Misskey » Version: 13.7.1
    cpe:2.3:a:misskey:misskey:13.7.1
  • Misskey » Misskey » Version: 13.7.2
    cpe:2.3:a:misskey:misskey:13.7.2
  • Misskey » Misskey » Version: 13.7.3
    cpe:2.3:a:misskey:misskey:13.7.3
  • Misskey » Misskey » Version: 13.7.4
    cpe:2.3:a:misskey:misskey:13.7.4
  • Misskey » Misskey » Version: 13.7.5
    cpe:2.3:a:misskey:misskey:13.7.5
  • Misskey » Misskey » Version: 13.8.0
    cpe:2.3:a:misskey:misskey:13.8.0
  • Misskey » Misskey » Version: 13.8.1
    cpe:2.3:a:misskey:misskey:13.8.1
  • Misskey » Misskey » Version: 13.9.0
    cpe:2.3:a:misskey:misskey:13.9.0
  • Misskey » Misskey » Version: 13.9.1
    cpe:2.3:a:misskey:misskey:13.9.1
  • Misskey » Misskey » Version: 13.9.2
    cpe:2.3:a:misskey:misskey:13.9.2
  • Misskey » Misskey » Version: 2023.10.0
    cpe:2.3:a:misskey:misskey:2023.10.0
  • Misskey » Misskey » Version: 2023.10.1
    cpe:2.3:a:misskey:misskey:2023.10.1
  • Misskey » Misskey » Version: 2023.10.2
    cpe:2.3:a:misskey:misskey:2023.10.2
  • Misskey » Misskey » Version: 2023.11.0
    cpe:2.3:a:misskey:misskey:2023.11.0
  • Misskey » Misskey » Version: 2023.11.1
    cpe:2.3:a:misskey:misskey:2023.11.1
  • Misskey » Misskey » Version: 2023.12.0
    cpe:2.3:a:misskey:misskey:2023.12.0
  • Misskey » Misskey » Version: 2023.12.1
    cpe:2.3:a:misskey:misskey:2023.12.1
  • Misskey » Misskey » Version: 2023.12.2
    cpe:2.3:a:misskey:misskey:2023.12.2
  • Misskey » Misskey » Version: 2023.9.0
    cpe:2.3:a:misskey:misskey:2023.9.0
  • Misskey » Misskey » Version: 2023.9.1
    cpe:2.3:a:misskey:misskey:2023.9.1
  • Misskey » Misskey » Version: 2023.9.2
    cpe:2.3:a:misskey:misskey:2023.9.2
  • Misskey » Misskey » Version: 2023.9.3
    cpe:2.3:a:misskey:misskey:2023.9.3
  • Misskey » Misskey » Version: 2024.10.0
    cpe:2.3:a:misskey:misskey:2024.10.0
  • Misskey » Misskey » Version: 2024.10.1
    cpe:2.3:a:misskey:misskey:2024.10.1
  • Misskey » Misskey » Version: 2024.10.2
    cpe:2.3:a:misskey:misskey:2024.10.2
  • Misskey » Misskey » Version: 2024.11.0
    cpe:2.3:a:misskey:misskey:2024.11.0
  • Misskey » Misskey » Version: 2024.11.1
    cpe:2.3:a:misskey:misskey:2024.11.1
  • Misskey » Misskey » Version: 2024.2.0
    cpe:2.3:a:misskey:misskey:2024.2.0
  • Misskey » Misskey » Version: 2024.3.0
    cpe:2.3:a:misskey:misskey:2024.3.0
  • Misskey » Misskey » Version: 2024.3.1
    cpe:2.3:a:misskey:misskey:2024.3.1
  • Misskey » Misskey » Version: 2024.5.0
    cpe:2.3:a:misskey:misskey:2024.5.0
  • Misskey » Misskey » Version: 2024.7.0
    cpe:2.3:a:misskey:misskey:2024.7.0
  • Misskey » Misskey » Version: 2024.8.0
    cpe:2.3:a:misskey:misskey:2024.8.0
  • Misskey » Misskey » Version: 2024.9.0
    cpe:2.3:a:misskey:misskey:2024.9.0
  • Misskey » Misskey » Version: 2025.1.0
    cpe:2.3:a:misskey:misskey:2025.1.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved