URL has been copied successfully!
JumpServer Connection Token Improper Authentication Vulnerability (CVE-2025-62712) Notice
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

JumpServer Connection Token Improper Authentication Vulnerability (CVE-2025-62712) Notice


Tags: , , , , , , ,

Overview Recently, NSFOCUS CERT detected that JumpServer issued a security bulletin to fix the JumpServer connection token improper authentication vulnerability (CVE-2025-62712); Due to improper authentication of JumpServer’s /api/v1/authentication/super-connection-token/hyper-connected endpoint, attackers with low-privilege accounts can obtain the connection tokens of all system users and connect to managed assets as them, thereby achieving unauthorized access and privilege…The post JumpServer Connection Token Improper Authentication Vulnerability (CVE-2025-62712) Notice appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..

First seen on securityboulevard.com

Jump to article: https://securityboulevard.com/2025/11/jumpserver-connection-token-improper-authentication-vulnerability-cve-2025-62712-notice/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Cisco Firewall and VPN Zero Day Attacks: CVE-2025-20333 and CVE-2025-20362
  2. JumpServer Connection Token Improper Authentication Vulnerability (CVE-2025-62712) Notice
  3. Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud, as UK’s NCSC Offers Tips for Post-Quantum Cryptography Adoption
  4. 10 key questions security leaders must ask at RSA 2025