CVE-2025-62425 | element-hq matrix-authentication-service up to 1.4.0 unverified password change (GHSA-6wfp-jq3r-j9xh)

A vulnerability labeled as critical has been found in element-hq matrix-authentication-service up to 1.4.0. This vulnerability affects unknown code. Executing manipulation can lead to unverified password change.

This vulnerability is registered as CVE-2025-62425. It is possible to launch the attack remotely. No exploit is available.

It is best practice to apply a patch to resolve this issue.VulDB Recent EntriesRead More