Description
An improper access check allows privilege escalation through the com_users batch task.
Published: 2026-05-26
Score: 8.2 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability results from an improper access check in Joomla! Core’s com_users batch task, allowing an attacker to elevate privileges on the affected system. Because the batch task can be invoked by users with insufficient permissions, a legitimate user could add or edit user accounts, granting themselves administrative rights or taking over existing accounts. This flaw is categorized as an access control weakness (CWE‑284).

Affected Systems

Affected by the Joomla! CMS, part of the Joomla! Project. The advisory lists Joomla! Core but does not specify exact version numbers; therefore all revisions of Joomla! Core that include the com_users component prior to the public patch are potentially vulnerable.

Risk and Exploitability

The CVSS score of 8.2 indicates high severity. The EPSS score is not available, and the vulnerability is not yet listed in CISA KEV. The attack vector is not explicitly detailed; it is inferred that the flaw can be exploited remotely via the web interface or locally by a user with access to the site, given that the batch task can be invoked without proper authorization checks. Without a patch, attackers could freely elevate privileges, leading to full system takeover.

Generated by OpenCVE AI on May 26, 2026 at 22:39 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Joomla! update that fixes the com_users batch task.
  • Disable or restrict the com_users batch task using user permissions or by removing the component from the site until a patch is available.
  • Review accounts and audit for unauthorized changes after applying the update to ensure no privilege escalation has occurred.

Generated by OpenCVE AI on May 26, 2026 at 22:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Joomla joomla!
Vendors & Products Joomla joomla!

Tue, 26 May 2026 21:00:00 +0000

Type Values Removed Values Added
First Time appeared Joomla
Joomla joomla\!
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*
Vendors & Products Joomla
Joomla joomla\!
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Tue, 26 May 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 26 May 2026 17:00:00 +0000

Type Values Removed Values Added
Description An improper access check allows privilege escalation through the com_users batch task.
Title Joomla! Core - [20260513] - Privilege escalation through com_users batch task
Weaknesses CWE-284
References
Metrics cvssV4_0

{'score': 8.2, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Joomla Joomla! Joomla\!
cve-icon MITRE

Status: PUBLISHED

Assigner: Joomla

Published:

Updated: 2026-05-27T09:12:03.902Z

Reserved: 2026-05-26T10:06:17.656Z

Link: CVE-2026-48898

cve-icon Vulnrichment

Updated: 2026-05-26T17:25:03.435Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-26T17:16:54.460

Modified: 2026-05-26T20:59:30.460

Link: CVE-2026-48898

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T10:04:38Z

Weaknesses