This page lists publicly disclosed CVE vulnerabilities affecting cisa thorium (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-35436 | CISA Thorium uses '.unwrap()' to handle errors related to account verification email messages. An unauthenticated remote attacker could cause a crash by providing a specially crafted email address or response. Fixed in commit 6a65a27. | 9119a7d8-5eab-497f-8521-727c672e3725 | 6.9 | 0.05% | 2025-09-17 | 2025-12-19 |
| CVE-2025-35435 | CISA Thorium accepts a stream split size of zero then divides by this value. A remote, authenticated attacker could cause the service to crash. Fixed in commit 89101a6. | 9119a7d8-5eab-497f-8521-727c672e3725 | 5.3 | 0.15% | 2025-09-17 | 2025-09-26 |
| CVE-2025-35434 | CISA Thorium does not validate TLS certificates when connecting to Elasticsearch. An unauthenticated attacker with access to a Thorium cluster could impersonate the Elasticsearch service. Fixed in 1.1.2. | 9119a7d8-5eab-497f-8521-727c672e3725 | 2.3 | 0.06% | 2025-09-17 | 2025-09-23 |
| CVE-2025-35433 | CISA Thorium does not properly invalidate previously used tokens when resetting passwords. An attacker that possesses a previously used token could still log in after a password reset. Fixed in 1.1.1. | 9119a7d8-5eab-497f-8521-727c672e3725 | 2.3 | 0.06% | 2025-09-17 | 2025-09-23 |
| CVE-2025-35432 | CISA Thorium does not rate limit requests to send account verification email messages. A remote unauthenticated attacker can send unlimited messages to a user who is pending verification. Fixed in 1.1.1 by adding a rate limit set by default to 10 minutes. | 9119a7d8-5eab-497f-8521-727c672e3725 | 6.9 | 0.26% | 2025-09-17 | 2025-09-23 |
| CVE-2025-35431 | CISA Thorium does not escape user controlled strings used in LDAP queries. An authenticated remote attacker can modify LDAP authorization data such as group memberships. Fixed in 1.1.1. | 9119a7d8-5eab-497f-8521-727c672e3725 | 5.3 | 0.05% | 2025-09-17 | 2025-09-26 |
| CVE-2025-35430 | CISA Thorium does not adequately validate the paths of downloaded files via 'download_ephemeral' and 'download_children'. A remote, authenticated attacker could access arbitrary files subject to file system permissions. Fixed in 1.1.2. | 9119a7d8-5eab-497f-8521-727c672e3725 | 5.3 | 0.06% | 2025-09-17 | 2025-10-08 |