Telekom Account Management Portal vulnerabilities
2 known vulnerabilities affecting telekom/account_management_portal.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2025-69614P2CRITICALCVSS 9.4fixed in 2025-10-272026-03-10
CVE-2025-69614 [CRITICAL] CWE-640 CVE-2025-69614: Incorrect Access Control via activation token reuse on the password-reset endpoint allowing unauthor
Incorrect Access Control via activation token reuse on the password-reset endpoint allowing unauthorized password resets and full account takeover. Affected Product: Deutsche Telekom AG Telekom Account Management Portal, versions before 2025-10-27, fixed 2025-10-31.
nvd
CVE-2025-69615P3CRITICALCVSS 9.1≤ 2025-10-242026-03-10
CVE-2025-69615 [CRITICAL] CWE-307 CVE-2025-69615: Incorrect Access Control via missing 2FA rate-limiting allowing unlimited brute-force retries and fu
Incorrect Access Control via missing 2FA rate-limiting allowing unlimited brute-force retries and full MFA bypass with no user interaction required. Affected Product: Deutsche Telekom AG Telekom Account Management Portal, versions before 2025-10-24, fixed 2025-11-03.
nvd