CVE-2025-53826 — Vulnetix

CVE-2025-53826 PUBLISHED CVSS 7.699999809265137 HIGH

File Browser’s insecure JWT handling can lead to session replay attacks after logout

EPSS 0.59% · 69.5th percentile

Risk Scores

CVSS v4.0

7.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:P

EPSS Score

0.59%

69.5th percentile

Affected Products

Vendor	Product	Versions
github.com	filebrowser/filebrowser/v2	0
filebrowser	filebrowser	2.39.0, *
github.com	filebrowser/filebrowser	0

Timeline

Jan 21, 1970 Security Advisory
Jul 15, 2025 Coalition ESS Score
Jul 15, 2025 CVE Published
Jul 16, 2025 EPSS Score
Jul 25, 2025 EPSS Score
Aug 3, 2025 EPSS Score
Aug 4, 2025 Coalition ESS Score
Aug 5, 2025 Coalition ESS Score
Aug 13, 2025 EPSS Score
Aug 22, 2025 EPSS Score
Aug 22, 2025 Coalition ESS Score
Aug 26, 2025 Coalition ESS Score

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›