PT-2025-40310 · Apache · Apache Kylin
Liuhuajin
·
Published
2025-09-30
·
Updated
2025-10-02
·
CVE-2025-61733
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Apache Kylin versions 4.0.0 through 5.0.2
Description
An authentication bypass issue exists in Apache Kylin. This allows bypassing normal authentication mechanisms through an alternate path or channel.
Recommendations
Upgrade to version 5.0.3 to resolve the issue.
Fix
Authentication Bypass Using an Alternate Path or Channel
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apache Kylin