CVE-2025-48044 | ash up to 3.7.0 lib/ash/policy/policy.ex authorization (GHSA-pcxq-fjp3-r752)

A vulnerability categorized as critical has been discovered in ash up to 3.7.0. This affects an unknown part in the library lib/ash/policy/policy.ex. Executing manipulation can lead to incorrect authorization.

The identification of this vulnerability is CVE-2025-48044. The attack may be launched remotely. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More