CVE-2026-25083 GROWI, Inc. CVE debrief

Who should care

Organizations running GROWI wiki platforms with OpenAI integration enabled, particularly those using shared AI assistants in multi-user environments. Security teams responsible for wiki/content management systems and AI/LLM integrations. Development teams maintaining GROWI deployments or similar wiki platforms with AI assistant features.

Technical summary

The vulnerability stems from missing authorization checks in GROWI's OpenAI integration API endpoints. When users interact with shared AI assistants, the thread and message APIs fail to verify that the requesting user owns or has permission to access the requested thread resources. This allows any authenticated user who obtains or guesses another user's thread identifier to read and modify conversation history. The attack requires low privileges (any logged-in user) and no user interaction, with high impact to data confidentiality and integrity. The fix involves implementing proper ownership verification on all thread and message API operations.

Defensive priority

HIGH

Recommended defensive actions

• Upgrade GROWI to version 7.4.6 or later which contains the authorization fix
• Review OpenAI assistant identifiers for any that may have been exposed or shared beyond intended users
• Audit access logs for unauthorized thread/message access patterns in shared AI assistant contexts
• Implement additional monitoring on OpenAI integration endpoints for anomalous cross-user data access
• If immediate patching is not possible, restrict access to OpenAI assistant features to trusted administrative users only

Evidence notes

Authorization failure in OpenAI integration endpoints; CWE-862 (Missing Authorization) identified by JPCERT/CC. Affected versions confirmed as 7.4.5 and earlier per vendor advisory.

Official resources