Craft CMS Security Update Advisory (CVE-2025-32432)

Jul 03 2025

Overview

We have released a security update to address a vulnerability in Craft CMS. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-32432

Craft CMS Version: 3.0.0-RC1 or later and 3.9.14 or earlier
Craft CMS Version: 4.0.0-RC1 or later 4.14.14 or earlier
Craft CMS Version: 5.0.0-RC1 or later 5.6.16 or earlier

Resolved Vulnerabilities

Remote code execution vulnerability in Craft CMS (CVE-2025-32432)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-32432

Craft CMS Version: 3.9.15
Craft CMS Version: 4.14.15
Craft CMS Version: 5.6.17

References

[1] Craft CMS and CVE-2025-32432
https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432

[2] Remote Code Execution
https://github.com/craftcms/cms/security/advisories/GHSA-f3gw-9ww9-jmc3

Craft CMS Security Update Advisory (CVE-2025-32432)

Microsoft Edge browser (135.0.3179.98) version security update advisory

Dell Product Security Update Advisory (CVE-2025-36593)

Tags:

Microsoft Edge browser (135.0.3179.98) version security update advisory

Dell Product Security Update Advisory (CVE-2025-36593)