Authentication Bypass Vulnerability in Wondershare Repairit
CVE-2025-10643

9.1CRITICAL

Key Information:

Vendor: Wondershare
Status: Repairit
Vendor: CVE Published:; 17 September 2025

🔔 Create Wondershare Vulnerability Alert

What is CVE-2025-10643?

Wondershare Repairit is susceptible to an authentication bypass vulnerability due to improper permission assignments related to storage account tokens. This flaw allows attackers to exploit affected installations without authentication, significantly increasing the risk of unauthorized access and manipulation of system resources. The vulnerability underscores the necessity of rigorous permission management in software applications to safeguard against remote threats.

Affected Version(s)

Repairit 6.5.2

References

https://www.zerodayinitiative.com/advisories/ZDI-25-895/

x_research-advisory

CVSS V3.0

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 17, 2025
Vulnerability Reserved
Sep 17, 2025

JSON