Improper Input Validation in ServiceStack Affects User Credentials
CVE-2025-6444

5.9MEDIUM

Key Information:

Vendor: Servicestack
Status: Servicestack
Vendor: CVE Published:; 25 June 2025

🔔 Create Servicestack Vulnerability Alert

What is CVE-2025-6444?

A vulnerability exists within the ServiceStack framework that allows remote attackers to relay NTLM credentials through a flaw in the GetErrorResponse method. This issue arises from insufficient validation of user-provided data, leading to a potential type confusion. Attackers can exploit this flaw to compromise user credentials, putting sensitive information at risk. Immediate action is recommended to mitigate this vulnerability by patching affected installations.

Affected Version(s)

ServiceStack 8.4.0

References

https://www.zerodayinitiative.com/advisories/ZDI-25-415/

x_research-advisory

CVSS V3.0

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2025
Vulnerability Reserved
Jun 20, 2025