An authorization flaw in the Budibase SCIM API allows authenticated users to gain unauthorized administrative control over tenant user and group data.

The SCIM router fails to implement role-based access control, allowing any authenticated user—regardless of their assigned role—to interact with sensitive administrative SCIM endpoints.

Successful exploitation allows an attacker to manipulate the entire user directory, including the creation, modification, or deletion of administrative accounts. Given the CVSS score of 9.9, this poses a critical risk of full tenant compromise and unauthorized data manipulation, potentially leading to a complete loss of platform integrity.

Immediate Action: Upgrade all Budibase instances to version 3.38.2 or later to enforce mandatory role checks on SCIM endpoints.

Proactive Monitoring: Review application access logs for unusual patterns of SCIM API requests or unauthorized modifications to user and group structures.

Compensating Controls: If immediate patching is not feasible, restrict network access to the SCIM API endpoints via firewall rules to known trusted administrative IP addresses.

Public Exploit Available: Unknown

This vulnerability represents a critical breakdown in access control. Administrators must prioritize updating to version 3.38.2 immediately to prevent unauthorized administrative escalation within the environment.