Description

Turms Server v0.10.0-SNAPSHOT and earlier contains a plaintext password storage vulnerability in the administrator authentication system. The BaseAdminService class caches administrator passwords in plaintext within AdminInfo objects to optimize authentication performance. Upon successful login, raw passwords are stored unencrypted in memory in the rawPassword field. Attackers with local system access can extract these passwords through memory dumps, heap analysis, or debugger attachment, bypassing bcrypt protection.

INFO

Published Date :

2025-12-19T00:00:00.000Z

Last Modified :

2025-12-19T15:57:25.539Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-66910 vulnerability.

Vendors Products
Turms
  • Turms Server
Turms-im
  • Turms
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-66910.

URL Resource
https://github.com/Xzzz111/public_cve_report/blob/main/CVE-2025-66910_report.md cve-icon cve-icon
https://github.com/turms-im/turms cve-icon cve-icon
https://github.com/turms-im/turms/blob/develop/turms-server-common/src/main/java/im/turms/server/common/domain/admin/bo/AdminInfo.java#L34 cve-icon cve-icon
https://github.com/turms-im/turms/blob/develop/turms-server-common/src/main/java/im/turms/server/common/domain/admin/service/BaseAdminService.java#L237 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact