CVE-2025-68926
RustFS · RustFS
RustFS uses a hardcoded, publicly exposed gRPC authentication token, allowing unauthenticated attackers to execute privileged operations, including data destruction and cluster reconfiguration.
Executive summary
A critical hardcoded authentication token vulnerability in RustFS allows unauthenticated remote attackers to gain full administrative control over distributed object storage clusters.
Vulnerability
The application utilizes a hardcoded static token for gRPC authentication that is universally valid across deployments. This flaw enables any unauthenticated attacker with network access to the gRPC interface to bypass security controls and perform unauthorized privileged actions.
Business impact
The presence of a hardcoded, publicly known credential represents a total compromise of the storage layer's security model. With a CVSS score of 9.8, this vulnerability poses an extreme risk, as it allows attackers to destroy critical business data, manipulate storage policies, and reconfigure cluster settings, leading to potential permanent data loss and severe operational disruption.
Remediation
Immediate Action: Upgrade all instances of RustFS to version 1.0.0-alpha.77 or later immediately to remove the hardcoded token.
Proactive Monitoring: Review gRPC traffic logs for anomalous authentication requests or unauthorized administrative commands originating from untrusted network segments.
Compensating Controls: Restrict network access to the gRPC port using host-based firewalls or network access control lists (ACLs) to ensure only authorized clients can communicate with the service.
Exploitation status
Public Exploit Available: No
Analyst recommendation
This vulnerability represents a catastrophic security failure due to the inclusion of hardcoded credentials in the source code. Organizations must prioritize patching to version 1.0.0-alpha.77 immediately. Failure to update leaves the infrastructure entirely exposed to any attacker capable of reaching the gRPC port.