ZITADEL is an open source identity management system. Starting in version 2.53.0 and prior to versions 4.0.0-rc.2, 3.3.2, 2.71.13, and 2.70.14, vulnerability in ZITADEL's session management API allows any authenticated user to update a session if they know its ID, due to a missing permission check. This flaw enables session hijacking, allowing an attacker to impersonate another user and access sensitive resources. Versions prior to `2.53.0` are not affected, as they required the session token for updates. Versions 4.0.0-rc.2, 3.3.2, 2.71.13, and 2.70.14 fix the issue.
                
            Metrics
Affected Vendors & Products
References
        History
                    Tue, 26 Aug 2025 18:00:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| CPEs | cpe:2.3:a:zitadel:zitadel:*:*:*:*:*:*:*:* cpe:2.3:a:zitadel:zitadel:4.0.0:rc1:*:*:*:*:*:* | |
| Metrics | cvssV3_1 
 | 
Wed, 16 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | epss 
 | 
Tue, 15 Jul 2025 18:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | ssvc 
 | 
Tue, 15 Jul 2025 16:45:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | ZITADEL is an open source identity management system. Starting in version 2.53.0 and prior to versions 4.0.0-rc.2, 3.3.2, 2.71.13, and 2.70.14, vulnerability in ZITADEL's session management API allows any authenticated user to update a session if they know its ID, due to a missing permission check. This flaw enables session hijacking, allowing an attacker to impersonate another user and access sensitive resources. Versions prior to `2.53.0` are not affected, as they required the session token for updates. Versions 4.0.0-rc.2, 3.3.2, 2.71.13, and 2.70.14 fix the issue. | |
| Title | ZITADEL has broken authN and authZ in session API and resulting session tokens | |
| Weaknesses | CWE-384 CWE-863 | |
| References |  | 
 | 
| Metrics | cvssV4_0 
 | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: GitHub_M
Published: 2025-07-15T16:39:00.635Z
Updated: 2025-07-15T17:19:29.391Z
Reserved: 2025-07-11T19:05:23.825Z
Link: CVE-2025-53895
 Vulnrichment
                        Vulnrichment
                    Updated: 2025-07-15T17:19:20.940Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2025-07-15T17:15:26.940
Modified: 2025-08-26T17:52:08.147
Link: CVE-2025-53895
 Redhat
                        Redhat
                    No data.