CVE-2025-25198

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Feb 12, 2025

CWE ID 601

Summary

CVE-2025-25198 is a vulnerability affecting the mailcow:dockerized open source email suite before version 2025-01a. This issue permits attackers to manipulate `Host HTTP` headers in password reset links, directing users to attacker-controlled domains. Consequences of this vulnerability include account takeover if a user clicks the malicious link. Version 2025-01a incorporates a patch, and a workaround involves disabling the password reset functionality by clearing the `Notification email sender` and `Notification email subject` under System -> Configuration -> Options -> Password Settings.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3COt9K
https://www.cve.org/CVERecord?id=CVE-2025-25198
https://nvd.nist.gov/vuln/detail/CVE-2025-25198

Back to Vulnerability Database

CVE-2025-25198

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations