← back
CVE-2025-66391

CVE-2025-66391

CVSS 8.8 HIGHEPSS 0.4%CWE-284
In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write operations, e.g., the system will send a one-time password to an attacker-controlled email address when the attacker attempts to reset the password of a user account.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
public PoCs found1
githubgithub.com/mandeepsohal/CVE-2025-663910
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://citrix.cloud.com/https://github.com/mandeepsohal/CVE-2025-66391/blob/main/Exploit.md