CVE-2025-46743

MEDIUM

Token Expired - Info Disclosure

Title source: llm

Description

An authenticated user's token could be used by another source after the user had logged out prior to the token expiring.

References (1)

Scores

CVSS v3 6.3
EPSS 0.0006
EPSS Percentile 19.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L

Classification

CWE
CWE-352
Status draft

Timeline

Published May 12, 2025
Tracked Since Feb 18, 2026