CVE-2025-30064 HIGH

CVE-2025-30064: Possibility to generate a session for any user via the "ex:action" parameter after obtaining access to the JWT key

Vendor Cgm
Product CGM CLININET
Weakness CWE-912
Published August 27, 2025
Last update August 27, 2025

CVSS base score

8.8/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

What the vulnerability does

01Description

An insufficiently secured internal function allows session generation for arbitrary users. The decodeParam function checks the JWT but does not verify which signing algorithm was used. As a result, an attacker can use the "ex:action" parameter in the VerifyUserByThrustedService function to generate a session for any user.

Key dates

02Disclosure timeline

August 27, 2025 CVE published
August 27, 2025 Record updated