Description
MRCMS 3.1.2 contains an access control vulnerability. The save() method in src/main/java/org/marker/mushroom/controller/UserController.java lacks proper authorization validation, enabling direct addition of super administrator accounts without authentication.
Published: 2026-04-07
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Patch Immediately
AI Analysis

Impact

MRCMS 3.1.2 contains an access‑control flaw in the UserController's save() method, which lacks proper authentication checks. An attacker able to reach the endpoint can create a new user account with super‑administrator privileges without providing credentials, granting full administrative control over the application. This vulnerability falls under the Access Control Weakness (CWE‑284) and can result in unauthorized data modification, denial of service, and disclosure of sensitive information.

Affected Systems

The affected product is MRCMS version 3.1.2. No other versions are listed as impacted by this flaw.

Risk and Exploitability

The CVSS base score of 9.8 marks this as a critical risk. The EPSS score is below 1%, indicating that large‑scale exploitation is currently unlikely, and the vulnerability is not listed in the CISA KEV catalog. The weakness can be exploited remotely via an unauthenticated HTTP request to the UserController endpoint, allowing anyone with network access to the application to create super‑administrator accounts.

Generated by OpenCVE AI on April 14, 2026 at 21:31 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade MRCMS to a version that resolves the access‑control issue.
  • Restrict network access to the UserController endpoint with firewall rules or reverse‑proxy authentication if an immediate upgrade is not possible.
  • Verify and remove any unauthorized super‑administrator accounts that may have been created.

Generated by OpenCVE AI on April 14, 2026 at 21:31 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 15 Apr 2026 16:45:00 +0000

Type Values Removed Values Added
Title Super Administrator Creation Without Authentication in MRCMS 3.1.2

Tue, 14 Apr 2026 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Mrcms
Mrcms mrcms
CPEs cpe:2.3:a:mrcms:mrcms:3.1.2:*:*:*:*:*:*:*
Vendors & Products Mrcms
Mrcms mrcms

Fri, 10 Apr 2026 10:00:00 +0000

Type Values Removed Values Added
Title Access Control Bypass Allowing Creation of Super Administrator Accounts in MRCMS 3.1.2

Thu, 09 Apr 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 09 Apr 2026 08:30:00 +0000

Type Values Removed Values Added
First Time appeared Wuweiit
Wuweiit mushroom
Vendors & Products Wuweiit
Wuweiit mushroom

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Title Access Control Bypass Allowing Creation of Super Administrator Accounts in MRCMS 3.1.2
Weaknesses CWE-284

Tue, 07 Apr 2026 18:00:00 +0000

Type Values Removed Values Added
Description MRCMS 3.1.2 contains an access control vulnerability. The save() method in src/main/java/org/marker/mushroom/controller/UserController.java lacks proper authorization validation, enabling direct addition of super administrator accounts without authentication.
References

Subscriptions

Mrcms Mrcms
Wuweiit Mushroom
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-04-09T14:05:33.228Z

Reserved: 2026-03-09T00:00:00.000Z

Link: CVE-2026-31272

cve-icon Vulnrichment

Updated: 2026-04-09T14:05:22.205Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-07T18:16:41.143

Modified: 2026-04-14T19:32:49.733

Link: CVE-2026-31272

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-15T16:30:09Z

Weaknesses