zitadel Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by zitadel
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
DOM-Based XSS Vulnerability in ZITADEL Identity Infrastructure Tool
CVE-2025-67495ZitadelZitadel8HIGHUnauthenticated SSRF Vulnerability in ZITADEL Identity Infrastructure Tool
CVE-2025-67494ZitadelZitadel9.3CRITICALIdentity Management Platform Vulnerability in ZITADEL
CVE-2025-64717ZitadelZitadel7.4HIGHIDOR Vulnerability in Zitadel Identity Management Platform
CVE-2025-64431ZitadelZitadel8.7HIGHMulti-Factor Authentication Bypass in Zitadel Policy Enforcement
CVE-2025-64103ZitadelZitadel8.7HIGHOnline Brute Force Vulnerability in Zitadel Identity Infrastructure Software
CVE-2025-64102ZitadelZitadel7.7HIGHVulnerability in Zitadel's Password Reset Mechanism
CVE-2025-64101ZitadelZitadel8.1HIGHSession Management Vulnerability in ZITADEL Identity Management System
CVE-2025-53895ZitadelZitadel7.7HIGHPassword Reset Mechanism Vulnerability in Zitadel Identity Infrastructure
CVE-2025-48936ZitadelZitadel8.8HIGHSession API Vulnerability in ZITADEL Identity Infrastructure Software
CVE-2025-46815ZitadelZitadel8HIGHIdentity Infrastructure Vulnerability in Zitadel Affecting Token Authorization
CVE-2025-31123ZitadelZitadel8.7HIGHInsecure Direct Object Reference Vulnerability in Zitadel Identity Infrastructure Software
CVE-2025-27507ZitadelZitadel9CRITICALZitadel Disables User Self-Registration Due to Security Vulnerability
CVE-2024-49757ZitadelZitadel7.5HIGHService Account Deactivation Issue in Zitadel Identify Management Platform
CVE-2024-47000ZitadelZitadel7.5HIGHZITADEL Patches (T)OTP Check Lockout Mechanism in Version 2.50.0
CVE-2024-32868ZitadelZitadel8.1HIGHUser-Uploaded Avatar Image Vulnerability in ZITADEL by ZITADEL
CVE-2024-29891ZitadelZitadel8.7HIGHZitadel Fixes Cookie Vulnerability Affecting User Sessions
CVE-2024-28197ZitadelZitadel7.5HIGHZITADEL vulnerable account takeover via malicious host header injection
CVE-2023-49097ZitadelZitadel8.1HIGHZITADEL race condition in lockout policy execution
CVE-2023-47111ZitadelZitadel7.3HIGHBroken Authorization in ZITADEL Actions
CVE-2022-36051ZitadelZitadel8.7HIGH