CVE-2025-5138

Name of the Vulnerable Software and Affected Versions Bitwarden versions up to 2.25.1

Description A vulnerability was found in the PDF File Handler component of Bitwarden, leading to cross-site scripting. The attack can be launched remotely, and the exploit has been disclosed to the public. The vendor was contacted early about this disclosure but did not respond in any way. It is estimated that over 218,000 services may be affected. The vulnerability allows attackers to execute malicious code via crafted PDFs, potentially compromising session tokens.

Recommendations For Bitwarden versions up to 2.25.1, consider disabling the PDF File Handler component until a patch is available. Restrict access to the PDF file upload function to minimize the risk of exploitation. Avoid using the PDF file upload function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.