CVE-2025-30206

Summary

CVE-2025-30206 is a vulnerability affecting Dpanel, a Docker visualization panel system. The issue lies in the Dpanel service, which contains a hardcoded JSON Web Token (JWT) secret in its default configuration. This secret allows attackers to generate valid JWT tokens and compromise the host machine, enabling them to bypass authentication mechanisms, impersonate privileged users, and gain unauthorized administrative access. The consequences of this vulnerability can be severe, including sensitive data exposure, unauthorized command execution, privilege escalation, and lateral movement within the network environment. The vulnerability is patched in version 1.6.1, and a workaround involves replacing the hardcoded secret with a securely generated value and loading it from secure configuration storage.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.