CVE-2025-67818 — HIGH (7.2)

Q: How severe is CVE-2025-67818?

CVE-2025-67818 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-67818?

Check the references section above for vendor advisories and patch information. Affected products include: Weaviate Weaviate.

Vulnerability Description

An issue was discovered in Weaviate OSS before 1.33.4. An attacker with access to insert data into the database can craft an entry name with an absolute path (e.g., /etc/...) or use parent directory traversal (../../..) to escape the restore root when a backup is restored, potentially creating or overwriting files in arbitrary locations within the application's privilege scope.

CVSS Score

7.2

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Weaviate	Weaviate	< 1.33.4

Related Weaknesses (CWE)

CWE-22

References

https://github.com/weaviate/weaviateProduct
https://weaviate.io/blog/weaviate-security-release-november-2025Vendor Advisory

FAQ

What is CVE-2025-67818?

CVE-2025-67818 is a vulnerability with a CVSS score of 7.2 (HIGH). An issue was discovered in Weaviate OSS before 1.33.4. An attacker with access to insert data into the database can craft an entry name with an absolute path (e.g., /etc/...) or use parent directory t...

How severe is CVE-2025-67818?

CVE-2025-67818 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-67818?

Check the references section above for vendor advisories and patch information. Affected products include: Weaviate Weaviate.