CVE-2025-65109

CVSS v4.0

8.5

High

Vector

AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L

Name of the Vulnerable Software and Affected Versions Minder Helm version 0.20241106.3386+ref.2507dbf Minder Go versions 0.0.72 through 0.0.83

Description Minder is an open source software supply chain security platform. Minder users may be able to retrieve content through the Minder server that they would not normally be able to access via URLs.

Recommendations Update Minder Helm to version 0.20250203.3849+ref.fdc94f0. Update Minder Go to version 0.0.84.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-830

Related Identifiers

CVE-2025-65109

GHSA-6XVF-4VH9-MW47

GO-2025-4147

Affected Products

Minder Go

Minder Helm

CVE-2025-65109

Weakness Enumeration

Related Identifiers

Affected Products

References · 12