VYPR
Medium severityOSV Advisory· Published Jan 20, 2025· Updated Apr 15, 2026

CVE-2025-23214

CVE-2025-23214

Description

Cosmos provides users the ability self-host a home server by acting as a secure gateway to your application, as well as a server manager. By monitoring the error code returned in the login, it is possible to figure out whether a user exist or not in the database. Patched in 0.17.7.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Azukaar/Cosmos ServerOSV2 versions
    v0.1.15, v0.1.16, v0.1.17, …+ 1 more
    • (no CPE)range: v0.1.15, v0.1.16, v0.1.17, …
    • (no CPE)range: <0.17.7

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.