Login Sign Up

CVE-2025-58055

4.3 MEDIUM
Authentication Bypass

📋 TL;DR

Discourse versions 3.5.0 and below contain an authorization bypass vulnerability in AI suggestion endpoints. Authenticated users can access restricted topic information by manipulating topic_id parameters in API requests. This affects all Discourse instances running vulnerable versions.

💻 Affected Systems

Products:
  • Discourse
Versions: 3.5.0 and below
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Requires AI helper feature enabled and authenticated user access.

📦 What is this software?

Discourse by Discourse

View all CVEs affecting Discourse →

Discourse by Discourse

View all CVEs affecting Discourse →

Discourse by Discourse

View all CVEs affecting Discourse →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Unauthorized disclosure of sensitive topic content, potentially exposing private discussions, confidential information, or restricted community content.

🟠

Likely Case

Limited information disclosure of topic titles, categories, and tags from restricted forums that authenticated users shouldn't access.

🟢

If Mitigated

No information disclosure if proper access controls are enforced or workarounds implemented.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires authenticated access and knowledge of restricted topic IDs.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.5.1

Vendor Advisory: https://github.com/discourse/discourse/security/advisories/GHSA-32v2-x274-vfhr

Restart Required: Yes

Instructions:

1. Backup your Discourse instance. 2. Update to Discourse version 3.5.1 or later. 3. Restart the application. 4. Verify the update completed successfully.

🔧 Temporary Workarounds

Restrict AI Helper Access

all

Limit AI helper feature access to specific user groups through site settings.

rails console
SiteSetting.composer_ai_helper_allowed_groups = '1,2,3'
SiteSetting.post_ai_helper_allowed_groups = '1,2,3'

🧯 If You Can't Patch

  • Disable AI helper features completely through site settings
  • Implement network-level access controls to restrict API endpoint access

🔍 How to Verify

Check if Vulnerable:

Check Discourse version via admin panel or run: `cd /var/discourse && ./launcher status app`

Check Version:

cd /var/discourse && ./launcher status app | grep version

Verify Fix Applied:

Confirm version is 3.5.1 or higher and test AI suggestion endpoints with unauthorized topic IDs.

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed authorization attempts to AI suggestion endpoints
  • Unusual pattern of topic_id parameter values in API requests

Network Indicators:

  • Unusual volume of requests to /ai-helper endpoints
  • Requests with sequential or out-of-range topic_id values

SIEM Query:

source="discourse_logs" AND (uri_path="/ai-helper/*" OR endpoint="ai_suggestion") AND status=200 AND user_group NOT IN ["admin","trusted"]

📊 Metadata

CVE ID: CVE-2025-58055
CVSS v3 Score: 4.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-284
EPSS Score: 0.08% exploit probability (23.8th percentile)
Published: October 1, 2025
Last Updated: October 23, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-58055, you might also want to check these:

CVE-2021-34795 10.0

This critical vulnerability in Cisco Catalyst PON Series Switches ONT web management interface allow...

Same vulnerability type (CWE-284)
CVE-2021-40113 10.0

Multiple vulnerabilities in Cisco Catalyst PON Series Switches ONT web management interface allow un...

Same vulnerability type (CWE-284)
CVE-2026-21636 10.0

A critical vulnerability in Node.js v25's experimental permission model allows attacker-controlled i...

Same vulnerability type (CWE-284)