CVE-2025-43866 – vantage6 is an open-source infrastructure for priv

CVE ID : CVE-2025-43866

Published : June 12, 2025, 6:15 p.m. | 45 minutes ago

Description : vantage6 is an open-source infrastructure for privacy preserving analysis. The JWT secret key in the vantage6 server is auto-generated unless defined by the user. The auto-generated key is a UUID1, which is not cryptographically secure as it is predictable to some extent. This vulnerability is fixed in 4.11.0.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…