CVE-2025-62712 | JumpServer up to 3.10.19-lts/4.10.10-lts API Endpoint super-connection-token authorization (GHSA-6ghx-6vpv-3wg7)

A vulnerability was found in JumpServer up to 3.10.19-lts/4.10.10-lts. It has been declared as critical. Impacted is an unknown function of the file /api/v1/authentication/super-connection-token/ of the component API Endpoint. The manipulation results in missing authorization.

This vulnerability was named CVE-2025-62712. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More