CVE-2025-68932 LOW

CVE-2025-68932: FreshRSS has weak cryptographic randomness in remember-me token and nonce generation

Vendor Freshrss
Product FreshRSS
Weakness CWE-338
Published December 26, 2025
Last update December 29, 2025

CVSS base score

2.9/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

FreshRSS is a free, self-hostable RSS aggregator. Prior to version 1.28.0, FreshRSS uses cryptographically weak random number generators (mt_rand() and uniqid()) to generate remember-me authentication tokens and challenge-response nonces. This allows attackers to predict valid session tokens, leading to account takeover through persistent session hijacking. The remember-me tokens provide permanent authentication and are the sole credential for "keep me logged in" functionality. This issue has been patched in version 1.28.0.

Key dates

02Disclosure timeline

December 26, 2025 CVE published
December 29, 2025 Record updated