PT-2025-37098 · Hoverfly · Hoverfly

Kr1Shna4Garwal

Published

2025-09-10

Updated

2025-09-24

CVE-2025-54376

CVSS v4.0

8.8

High

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions: Hoverfly versions 1.11.3 and prior

Description: Hoverfly’s admin WebSocket endpoint /api/v2/ws/logs lacks the authentication middleware present in the REST admin API. This allows an unauthenticated remote attacker to stream real-time application logs, potentially exposing sensitive data such as internal file paths and request/response bodies.

Recommendations: Update to version 1.12.0 or later.

Exploit

Fix

Insertion into Log File

Information Disclosure

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532CWE-200CWE-287

Related Identifiers

CVE-2025-54376

GHSA-JXMR-2H4Q-RHXP

GO-2025-3945

OPENSUSE-SU-2025:15564-1

SUSE-SU-2025:03289-1

Affected Products

Hoverfly

PT-2025-37098 · Hoverfly · Hoverfly

CVE-2025-54376

Weakness Enumeration

Related Identifiers

Affected Products

References · 51