PT-2025-50905 · Apache · Apache Fineract
Ádám Sághy
+1
·
Published
2025-12-12
·
Updated
2025-12-18
·
CVE-2025-58130
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Apache Fineract versions through 1.11.0
Description
A flaw exists in Apache Fineract related to insufficiently protected credentials. Upgrade to version 1.13.0, the latest release, to address this issue. The issue is resolved in version 1.12.1.
Recommendations
Upgrade to version 1.13.0.
Fix
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apache Fineract