CVE-2025-66910

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-66910
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-66910.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-66910
Published
2025-12-19T15:15:56.790Z
Modified
2026-03-13T03:41:58.840647Z
Severity
  • 6.0 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
Summary
[none]
Details

Turms Server v0.10.0-SNAPSHOT and earlier contains a plaintext password storage vulnerability in the administrator authentication system. The BaseAdminService class caches administrator passwords in plaintext within AdminInfo objects to optimize authentication performance. Upon successful login, raw passwords are stored unencrypted in memory in the rawPassword field. Attackers with local system access can extract these passwords through memory dumps, heap analysis, or debugger attachment, bypassing bcrypt protection.

References

Affected packages

Git / github.com/turms-im/turms

Affected ranges

Type
GIT
Repo
https://github.com/turms-im/turms
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
8e1df48d4b713f7a8c945cbc4dd76e0ecad5c396
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "0.10.0-snapshot"
        }
    ]
}

Affected versions

v0.*
v0.10.0-SNAPSHOT

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-66910.json"