CVE-2025-66028 | oneuptime up to 8.0.5566 Login Response Manipulation isMasterAdmin access control

A vulnerability, which was classified as critical, has been found in oneuptime up to 8.0.5566. Impacted is an unknown function of the component Login Response Manipulation. The manipulation of the argument isMasterAdmin leads to improper access controls.

This vulnerability is referenced as CVE-2025-66028. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More