CVE-2025-46647

EPSS 0.08%
Veröffentlicht 02.07.2025 11:08:47
Zuletzt bearbeitet 09.07.2025 15:25:56
Quelle security@apache.org
Teams Watchlist Login
Unerledigt Login

A vulnerability of plugin openid-connect in Apache APISIX.

This vulnerability will only have an impact if all of the following conditions are met:
1. Use the openid-connect plugin with introspection mode
2. The auth service connected to openid-connect provides services to multiple issuers
3. Multiple issuers share the same private key and relies only on the issuer being different

If affected by this vulnerability, it would allow an attacker with a valid account on one of the issuers to log into the other issuer.




This issue affects Apache APISIX: until 3.12.0.

Users are recommended to upgrade to version 3.12.0 or higher.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apache ≫ Apisix Version < 3.12.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.239

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.3	1.6	3.6	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-302 Authentication Bypass by Assumed-Immutable Data

The authentication scheme or implementation uses key data elements that are assumed to be immutable, but can be controlled or modified by the attacker.

https://lists.apache.org/thread/yrpp2cd3o4qkxlrh421mq8gsrt0k4x0w

Vendor Advisory

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2025-46647

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-46647

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-46647

EUVD