Medium severity5.0OSV Advisory· Published Nov 30, 2025· Updated Apr 15, 2026
CVE-2025-66432
CVE-2025-66432
Description
In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date.
Affected products
1- Range: dogfood, rel/v17.1/m1, rel/v17.1/rc0, …
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
0No linked articles in our index yet.