VULNMAP - Security Vulnerabilities

CVE
2025-22974
View CVE 2025-22974

Public CVE-2025-22974 disclosure

WorkOS Hosted AuthKit before 2025-01-07 allows a password authentication MFA bypass (by enrolling a new authentication factor) when the attacker knows the user's password. No exploitation occurred.

Link not working? No problem! With VULNMAP you always have guaranteed access to security information thanks to reliable backups.

🕰️ View on Wayback Machine 🔍 Search on Google NVD Database CVE.ORG Database
Our backup links ensure that critical data remains always available, even in case of unavailability of original sites.