CVE-2025-67717 | Zitadel up to 3.4.4/4.7.1 totalResult exposure of sensitive system information to an unauthorized control sphere (GHSA-f4cf-9rvr-2rcx)

A vulnerability was found in Zitadel up to 3.4.4/4.7.1. It has been rated as problematic. This affects an unknown function. The manipulation of the argument totalResult leads to exposure of sensitive system information to an unauthorized control sphere.

This vulnerability is listed as CVE-2025-67717. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More