CVE-2025-22236

Published: Jun 13, 2025
Updated: Jun 30, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2025-22236" target="_blank" rel="noopener"> CVE-2025-22236
GHSA: <a href="https://github.com/advisories/GHSA-jh7c-xh74-h76f" target="_blank" rel="noopener"> GHSA-jh7c-xh74-h76f
Severity: High
Exploit:

Minion event bus authorization bypass. An attacker with access to a minion key can craft a message which may be able to execute a job on other minions (>= 3007.0).