MinIO SFTP authentication bypass due to improperly trusted SSH key 漏洞信息(CVE-2025-27414)

一、漏洞 CVE-2025-27414 基础信息

漏洞信息

                                        # MinIO SFTP 认证绕过由于不正当地信任 SSH 密钥

N/A

提示

尽管我们采用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。
神龙会尽力确保数据准确，但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利！

漏洞标题

MinIO SFTP authentication bypass due to improperly trusted SSH key

来源：美国国家漏洞数据库 NVD

漏洞描述信息

MinIO is a high performance object storage. Starting in RELEASE.2024-06-06T09-36-42Z and prior to RELEASE.2025-02-28T09-55-16Z, a bug in evaluating the trust of the SSH key used in an SFTP connection to MinIO allows authentication bypass and unauthorized data access. On a MinIO server with SFTP access configured and using LDAP as an external identity provider, MinIO supports SSH key based authentication for SFTP connections when the user has the `sshPublicKey` attribute set in their LDAP server. The server trusts the client's key only when the public key is the same as the `sshPublicKey` attribute. Due to the bug, when the user has no `sshPublicKey` property in LDAP, the server ends up trusting the key allowing the client to perform any FTP operations allowed by the MinIO access policies associated with the LDAP user (or any of their groups). Three requirements must be met in order to exploit the vulnerability. First, the MinIO server must be configured to allow SFTP access and use LDAP as an external identity provider. Second, the attacker must have knowledge of an LDAP username that does not have the `sshPublicKey` property set. Third, such an LDAP username or one of their groups must also have some MinIO access policy configured. When this bug is successfully exploited, the attacker can perform any FTP operations (i.e. reading, writing, deleting and listing objects) allowed by the access policy associated with the LDAP user account (and their groups). Version 1.2.0 fixes the issue.

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

认证机制不恰当

来源：美国国家漏洞数据库 NVD

漏洞标题

MinIO 授权问题漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

MinIO是美国MinIO公司的一款开源的对象存储服务器。该产品支持构建用于机器学习、分析和应用程序数据工作负载的基础架构。 MinIO 存在授权问题漏洞，该漏洞源于SSH密钥信任评估错误，可能导致认证绕过和未授权数据访问。

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

授权问题

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2025-27414 的公开POC

#	POC 描述	源链接	神龙链接

三、漏洞 CVE-2025-27414 的情报信息

标题： SFTP authentication bypass due to improperly trusted SSH key · Advisory · minio/minio · GitHub -- 🔗来源链接

标签： x_refsource_CONFIRM
标题： fix: SFTP auth bypass with no pub key in LDAP (#20986) · minio/minio@4c71f1b · GitHub -- 🔗来源链接

标签： x_refsource_MISC
标题： Add LDAP public key authentication to SFTP (#19833) · minio/minio@91e1487 · GitHub -- 🔗来源链接

标签： x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2025-27414

四、漏洞 CVE-2025-27414 的评论

暂无评论

一、 漏洞 CVE-2025-27414 基础信息

漏洞信息

提示

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2025-27414 的公开POC

三、漏洞 CVE-2025-27414 的情报信息

四、漏洞 CVE-2025-27414 的评论

发表评论

一、漏洞 CVE-2025-27414 基础信息