VYPR
Unrated severityNVD Advisory· Published Nov 29, 2025· Updated Dec 3, 2025

Kiteworks MFT is vulnerable to Insufficient Session Expiration

CVE-2025-53896

Description

Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, a bug in Kiteworks MFT could cause under certain circumstances that a user's active session would not properly time out due to inactivity. This issue has been patched in version 9.1.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2025-53896 · VYPR