CVE-2025-64173 | apollographql router up to 1.61.11/2.8.0 authentication bypass

A vulnerability categorized as critical has been discovered in apollographql router up to 1.61.11/2.8.0. The affected element is an unknown function. The manipulation results in authentication bypass using alternate channel.

This vulnerability was named CVE-2025-64173. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More