CVE-2025-2102 | THREATINT

Description

Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Passwordless on Windows allows Privilege Escalation.This issue affects HYPR Passwordless: before 10.1.

PUBLISHED Reserved 2025-03-07 | Published 2025-05-21 | Updated 2025-05-21 | Assigner HYPR

MEDIUM: 5.7CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:A/VC:L/VI:H/VA:N/SC:L/SI:H/SA:N

Problem types

CWE-59 Improper Link Resolution Before File Access ('Link Following')

Product status

Default status

unaffected

Any version before 10.1

affected

References

www.hypr.com/trust-center/security-advisories

cve.org (CVE-2025-2102)

nvd.nist.gov (CVE-2025-2102)

Download JSON