CVE-2025-30064

CVSS v4.0

8.8

High

Vector

AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Name of the Vulnerable Software and Affected Versions: versions prior to 2.3

Description: An insufficiently secured internal function allows session generation for arbitrary users. The decodeParam function checks the JWT but does not verify which signing algorithm was used. An attacker can use the ex:action parameter in the VerifyUserByThrustedService function to generate a session for any user.

Recommendations: Update to a version prior to 2.3. As a temporary workaround, consider restricting the use of the VerifyUserByThrustedService function until a patch is available. Avoid using the ex:action parameter until the issue is resolved.

Fix

Hidden Functionality

Improper Verification of Cryptographic Signature

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-912CWE-347

Related Identifiers

CVE-2025-30064

Affected Products

Verifyuserbythrustedservice

CVE-2025-30064

Weakness Enumeration

Related Identifiers

Affected Products

References · 5