VYPR
Unrated severityOSV Advisory· Published Dec 5, 2025· Updated Dec 8, 2025

CVE-2025-65730

CVE-2025-65730

Description

Authentication Bypass via Hardcoded Credentials GoAway up to v0.62.18, fixed in 0.62.19, uses a hardcoded secret for signing JWT tokens used for authentication.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • GoAway/GoAwayOSV2 versions
    v0.1.0, v0.1.1, v0.10.0, …+ 1 more
    • (no CPE)range: v0.1.0, v0.1.1, v0.10.0, …
    • (no CPE)range: <=0.62.18

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.