CVE-2025-8093

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Drupal Authenticator Login versions prior to 2.1.8

Description An authentication bypass issue exists in Drupal Authenticator Login. This allows attackers to bypass authentication mechanisms by utilizing an alternate path or channel.

Recommendations Update Drupal Authenticator Login to version 2.1.8 or later.

Fix

Authentication Bypass Using an Alternate Path or Channel

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-288

Related Identifiers

CVE-2025-8093

DRUPAL-CONTRIB-2025-098

Affected Products

Drupal Authenticator Login

CVE-2025-8093

Weakness Enumeration

Related Identifiers

Affected Products

References · 8