CVE-2025-65925

MEDIUM

Zeroheight <2025-06-13 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-65925. PoCs published by Sneden.

AI-analyzed exploit summary This repository contains a detailed writeup for CVE-2025-65925, an incorrect access control vulnerability in Zeroheight's account creation flow that allowed bypassing email verification. The issue was fixed by the vendor by enforcing verification token validation.

Description

An issue was discovered in Zeroheight (SaaS) prior to 2025-06-13. A legacy user creation API pathway allowed accounts to be created without completing the intended email verification step. While unverified accounts could not access product functionality, the behavior bypassed intended verification controls and allowed unintended account creation. This could have enabled spam/fake account creation or resource usage impact. No data exposure or unauthorized access to existing accounts was reported.

Exploits (1)

nomisec WRITEUP
by Sneden · poc
https://github.com/Sneden/zeroheight-account-verification-bypass-CVE-2025-65925

This repository contains a detailed writeup for CVE-2025-65925, an incorrect access control vulnerability in Zeroheight's account creation flow that allowed bypassing email verification. The issue was fixed by the vendor by enforcing verification token validation.

Classification
Writeup 100%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Zeroheight (SaaS platform) prior to 2025-06-13
No auth needed
Prerequisites: Access to the legacy user creation API endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 6.5
EPSS 0.0021
EPSS Percentile 11.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-287
Status published
Products (1)
zeroheight/zeroheight < 2025-06-13
Published Dec 30, 2025
Tracked Since Feb 18, 2026