CVE-2025-27149

LOW
Published Mar 31, 2025 Modified Sep 27, 2025 CWE-497

Description

Zulip server provides an open-source team chat that helps teams stay productive and focused. Prior to 10.0, the data export to organization administrators feature in Zulip leaks private data. The collection of user-agent types identifying specific integrations or HTTP libraries (E.g., ZulipGitlabWebhook, okhttp, or PycURL) that have been used to access any organization on the server was incorrectly included in all three export types, regardless of if they were used to access the exported organization or not. The "public data" and "with consent" exports metadata including the titles of some topics in private channels which the administrator otherwise did not have access to, and none of the users consented to exporting and metadata for which users were in a group DM together. This vulnerability is fixed in 10.0.

CVSS v3.1 Score

2.7
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Weakness Type (CWE)

CWE-497 CWE-497

Affected Products

Vendor Product
zulip zulip_server

References

Frequently Asked Questions

What is CVE-2025-27149? +
Zulip server provides an open-source team chat that helps teams stay productive and focused. Prior to 10.0, the data export to organization administrators feature in Zulip leaks private data. The collection of user-agent types identifying specific integrations or HTTP libraries (E.g., ZulipGitlabWebhook, okhttp, or PycURL) that have been used to access any organization on the server was incorrectly included in all three export types, regardless of if they were used to access the exported organization or not. The "public data" and "with consent" exports metadata including the titles of some topics in private channels which the administrator otherwise did not have access to, and none of the users consented to exporting and metadata for which users were in a group DM together. This vulnerability is fixed in 10.0. It has a CVSS v3.1 base score of 2.7 (LOW).
How severe is CVE-2025-27149? +
CVE-2025-27149 has a CVSS v3.1 score of 2.7 out of 10, rated LOW. This is a low-severity vulnerability with limited impact.
What products are affected by CVE-2025-27149? +
CVE-2025-27149 affects products from zulip, specifically: zulip_server. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2025-27149? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2025-27149 — free, no signup required.

Start Free Scan