CVE-2025-53895 | Zitadel up to 2.70.13/2.71.12/3.3.0/4.0.0-rc.1 Session Management API authorization

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability was found in Zitadel up to 2.70.13/2.71.12/3.3.0/4.0.0-rc.1 and classified as critical. This issue affects some unknown processing of the component Session Management API. The manipulation leads to incorrect authorization.

The identification of this vulnerability is CVE-2025-53895. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53895 | Zitadel up to 2.70.13/2.71.12/3.3.0/4.0.0-rc.1 Session Management API authorization

Post correlati

CVE-2024-2613 | Mozilla Firefox up to 123 QUIC ACK Frame Decoder memory allocation

CVE-2023-49539 | Book Store Management System 1.0 category cross site scripting

CVE-2024-50172 | Linux Kernel up to 6.6.58/6.11.5 RDMA bnxt_re_setup_chip_ctx memory leak (73e04a6114e0/595fa9b17201/3fc5410f225d)

CVE-2023-32366 | Apple macOS Font File out-of-bounds write