CVE-2025-67482

Summary

Vulnerability in Wikimedia Foundation Scribunto, Wikimedia Foundation luasandbox. This vulnerability is associated with program files includes/Engines/LuaCommon/lualib/mwInit.Lua, library.C.

This issue affects Scribunto: from * before 1.39.16, 1.43.6, 1.44.3, 1.45.1; luasandbox: from * before fea2304f8f6ab30314369a612f4f5b165e68e95a.

Affected Software

VendorProductVersion RangeStatus
Wikimedia FoundationScribunto* < 1.39.16, 1.43.6, 1.44.3, 1.45.1affected
Wikimedia Foundationluasandbox* < fea2304f8f6ab30314369a612f4f5b165e68e95aaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References