Unrated severityOSV Advisory· Published Dec 12, 2025· Updated Dec 12, 2025
Apache Fineract: Server Key not masked
CVE-2025-58130
Description
Insufficiently Protected Credentials vulnerability in Apache Fineract.
This issue affects Apache Fineract: through 1.11.0. The issue is fixed in version 1.12.1.
Users are encouraged to upgrade to version 1.13.0, the latest release.
Affected products
2Patches
Vulnerability mechanics
References
1- lists.apache.org/thread/d9zpkc86zk265523tfvbr8w7gyr6onoymitrevendor-advisory
News mentions
0No linked articles in our index yet.