Zitadel up to 2.70.0 authorization

Summaryinfo

A vulnerability was found in Zitadel up to 2.70.0. It has been classified as problematic. The impacted element is an unknown function. Performing a manipulation results in authorization. This vulnerability is cataloged as CVE-2025-27507. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.

Detailsinfo

A vulnerability, which was classified as problematic, was found in Zitadel up to 2.70.0. This affects an unknown code block. The manipulation with an unknown input leads to a authorization vulnerability. CWE is classifying the issue as CWE-639. The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:

The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. ZITADEL's Admin API contains Insecure Direct Object Reference (IDOR) vulnerabilities that allow authenticated users, without specific IAM roles, to modify sensitive settings. While several endpoints are affected, the most critical vulnerability lies in the ability to manipulate LDAP configurations. Customers who do not utilize LDAP for authentication are not at risk from the most severe aspects of this vulnerability. However, upgrading to the patched version to address all identified issues is strongly recommended. This vulnerability is fixed in 2.71.0, 2.70.1, ,2.69.4, 2.68.4, 2.67.8, 2.66.11, 2.65.6, 2.64.5, and 2.63.8.

The advisory is shared at github.com. This vulnerability is uniquely identified as CVE-2025-27507 since 02/26/2025. The exploitability is told to be easy. It is possible to initiate the attack remotely. Additional levels of successful authentication are needed for exploitation. Neither technical details nor an exploit are publicly available.

Upgrading to version 2.63.8, 2.64.5, 2.65.6, 2.66.11, 2.67.8, 2.68.4, 2.69.4 or 2.70.1 eliminates this vulnerability.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Productinfo

Name

• Zitadel

Version

• 2.0
• 2.1
• 2.2
• 2.3
• 2.4
• 2.5
• 2.6
• 2.7
• 2.8
• 2.9
• 2.10
• 2.11
• 2.12
• 2.13
• 2.14
• 2.15
• 2.16
• 2.17
• 2.18
• 2.19
• 2.20
• 2.21
• 2.22
• 2.23
• 2.24
• 2.25
• 2.26
• 2.27
• 2.28
• 2.29
• 2.30
• 2.31
• 2.32
• 2.33
• 2.34
• 2.35
• 2.36
• 2.37
• 2.38
• 2.39
• 2.40
• 2.41
• 2.42
• 2.43
• 2.44
• 2.45
• 2.46
• 2.47
• 2.48
• 2.49
• 2.50
• 2.51
• 2.52
• 2.53
• 2.54
• 2.55
• 2.56
• 2.57
• 2.58
• 2.59
• 2.60
• 2.61
• 2.62
• 2.63
• 2.63.0
• 2.63.1
• 2.63.2
• 2.63.3
• 2.63.4
• 2.63.5
• 2.63.6
• 2.63.7
• 2.64
• 2.64.0
• 2.64.1
• 2.64.2
• 2.64.3
• 2.64.4
• 2.65
• 2.65.0
• 2.65.1
• 2.65.2
• 2.65.3
• 2.65.4
• 2.65.5
• 2.66
• 2.66.0
• 2.66.1
• 2.66.2
• 2.66.3
• 2.66.4
• 2.66.5
• 2.66.6
• 2.66.7
• 2.66.8
• 2.66.9
• 2.66.10
• 2.67
• 2.67.0
• 2.67.1
• 2.67.2
• 2.67.3
• 2.67.4
• 2.67.5
• 2.67.6
• 2.67.7
• 2.68
• 2.68.0
• 2.68.1
• 2.68.2
• 2.68.3
• 2.69
• 2.69.0
• 2.69.1
• 2.69.2
• 2.69.3
• 2.70.0

Website

• Product: https://github.com/zitadel/zitadel/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Discussion