Improper Access Control Vulnerability in Mist Community Edition by Mist.io

CVE-2025-5409

What is CVE-2025-5409?

A vulnerability was identified in the Mist Community Edition version 4.7.1 that affects the API Token Handler's create_token function. This flaw allows for improper access controls, enabling potentially malicious actors to exploit the system remotely. Public disclosure of this vulnerability has raised concerns, highlighting the urgency for users to upgrade to version 4.7.2, which includes necessary patches to mitigate the risks associated with this security issue. It’s imperative for users of this software to remain vigilant and apply the recommended updates promptly.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References