CVE-2025-6216

EPSS 16.63%
Published 21.06.2025 00:08:15
Last modified 18.08.2025 15:58:41
Source zdi-disclosures@trendmicro.com
Teams watchlist Login
Open Login

Allegra calculateTokenExpDate Password Recovery Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the password recovery mechanism. The issue results from reliance upon a predictable value when generating a password reset token. An attacker can leverage this vulnerability to bypass authentication on the application. Was ZDI-CAN-27104.

Affected products Warnungen 0 Metrics 2 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Alltena ≫ Allegra Version >= 7.0.0 < 7.5.2.70

Alltena ≫ Allegra Version >= 8.0.0 < 8.1.24

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	16.63%	0.947

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
zdi-disclosures@trendmicro.com	9.8	3.9	5.9	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-640 Weak Password Recovery Mechanism for Forgotten Password

The product contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak.

https://www.zerodayinitiative.com/advisories/ZDI-25-410/

Third Party Advisory

https://alltena.com/en/resources/release-notes/release-notes-for-release-8-1-4-and-release-7-5-2

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-6216

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-6216

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-6216

EUVD