CVE-2025-43712 | JHipster up to 8.8.x /api/account authorities access control

A vulnerability was found in JHipster up to 8.8.x and classified as critical. This issue affects some unknown processing of the file /api/account. The manipulation of the argument authorities leads to improper access controls.

The identification of this vulnerability is CVE-2025-43712. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More