CVE Daily – Teleport https://cvedaily.com/pages/tags/teleport.html CVE Daily – Teleport en Wed, 03 Jun 2026 21:27:06 +0000 [Critical] CVE-2025-49825 – Teleport provides connectivity, authentication, access controls and audit for in... https://nvd.nist.gov/vuln/detail/CVE-2025-49825 https://nvd.nist.gov/vuln/detail/CVE-2025-49825 Tue, 17 Jun 2025 22:15:49 +0000 Critical CVE-2025-49825

Teleport provides connectivity, authentication, access controls and audit for infrastructure. Community Edition versions before and including 17.5.1 are vulnerable to remote authentication bypass. At time of posting, there is no available open-source patch.

CVSS: 9.8 · CWE: CWE-863

View on NVD

]]> [High] CVE-2025-28855 – Improper Neutralization of Input During Web Page Generation ('Cross-site Scripti... https://nvd.nist.gov/vuln/detail/CVE-2025-28855 https://nvd.nist.gov/vuln/detail/CVE-2025-28855 Wed, 26 Mar 2025 15:16:14 +0000 High CVE-2025-28855

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in srcoley Teleport teleport allows Reflected XSS.This issue affects Teleport: from n/a through <= 1.2.4.

CVSS: 7.1 · CWE: CWE-79

View on NVD

]]> [Medium] CVE-2022-38599 – Teleport v3.2.2, Teleport v3.5.6-rc6, and Teleport v3.6.3-b2 was discovered to c... https://nvd.nist.gov/vuln/detail/CVE-2022-38599 https://nvd.nist.gov/vuln/detail/CVE-2022-38599 Thu, 08 Dec 2022 17:15:10 +0000 Medium CVE-2022-38599

Teleport v3.2.2, Teleport v3.5.6-rc6, and Teleport v3.6.3-b2 was discovered to contain an information leak via the /user/get-role-list web interface.

CVSS: 6.5 · CWE: CWE-668

View on NVD

]]>