CVE-2025-25227

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 8, 2025

CWE ID 287

Summary

CVE-2025-25227 is a cybersecurity vulnerability that arises due to insufficient state checks in a system. This issue permits an attacker to bypass two-factor authentication (2FA), rendering the security measure ineffective. The vulnerability could potentially expose sensitive user information to unauthorized access, posing a significant risk to data privacy and security. It is essential for affected organizations to apply the necessary patches or updates to mitigate this threat and reinforce their authentication mechanisms.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Joomla

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/3DkrEM
https://www.cve.org/CVERecord?id=CVE-2025-25227
https://nvd.nist.gov/vuln/detail/CVE-2025-25227

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2025-25227

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations