A low-privileged user can bypass account credentials without confirming the user's current authentication state, which may lead to unauthorized privilege escalation.
CVSS
No CVSS.
References
Configurations
No configuration.
History
22 Jan 2026, 22:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-01-22 22:16
Updated : 2026-01-26 15:04
NVD link : CVE-2025-14751
Mitre link : CVE-2025-14751
CVE.ORG link : CVE-2025-14751
JSON object : View
Products Affected
No product.
CWE
CWE-620
Unverified Password Change