Critical
CVE-2025-49825
Teleport provides connectivity, authentication, access controls and audit for infrastructure. Community Edition versions before and including 17.5.1 are vulnerable to remote authentication bypass. At…
Tag: Teleport
All CVEs associated with "Teleport". Page 1/1 • 3 CVEs.
About “Teleport”
A curated feed of “Teleport”-related CVEs appears below. We currently track 3 CVEs for this tag (all time). In the last 365 days, 1 were published. Average CVSS is 7.8 (all time; 9.8 over 365d), and 67% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-863 - Incorrect Authorization.
In our taxonomy this topic maps to a LOW impact class. Remote access tools expose critical entry points. Patch, enforce MFA, restrict split tunneling, and monitor authentication events. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.
Support & lifecycle: teleport
This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.
| Cycle | Release | Latest | Premier Support | EOL | LTS |
|---|---|---|---|---|---|
| 18 | 18.8.2 | Unavailable | - | ||
| 17 | 17.7.24 | - | |||
| 16 | 16.5.18 | Expired |
Maintained Soon (≤ 180 days) Expired
Subscribe lifecycle: RSS (expired) · ICS
Subscribe CVEs: RSS for “Teleport” · RSS (High+Critical only)
CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).
CVSS ≥ 0.0
2025-06-17
2025-03-26
High
CVE-2025-28855
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in srcoley Teleport teleport allows Reflected XSS.This issue affects Teleport: from n/a through <= 1…
2022-12-08
Medium
CVE-2022-38599
Teleport v3.2.2, Teleport v3.5.6-rc6, and Teleport v3.6.3-b2 was discovered to contain an information leak via the /user/get-role-list web interface.