CVE-2025-62175 | Mastodon up to 4.2.26/4.3.13/4.4.5 API Endpoint dropped privileges (GHSA-r2fh-jr9c-9pxh)

A vulnerability has been found in Mastodon up to 4.2.26/4.3.13/4.4.5 and classified as critical. This affects an unknown function of the component API Endpoint. Performing manipulation results in improper check for dropped privileges.

This vulnerability is cataloged as CVE-2025-62175. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More