CVE-2025-58137
published 2025-12-12CVE-2025-58137: Authorization Bypass Through User-Controlled Key vulnerability in Apache Fineract. This issue affects Apache Fineract: through 1.11.0. The issue is fixed in…
high8.1CVSS 3.1
AVNACLPRLUINSUCHIHAN
Authorization Bypass Through User-Controlled Key vulnerability in Apache Fineract.
This issue affects Apache Fineract: through 1.11.0. The issue is fixed in version 1.12.1.
Users are encouraged to upgrade to version 1.13.0, the latest release.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | fineract | < 1.12.1 | 1.12.1 |
| apache_software_foundation | apache_fineract | <= 1.11.0 | — |