Vulnerability in Hypr Passwordless

CVE-2025-0372

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in HYPR Passwordless on Windows allows Privilege Escalation.This issue affects HYPR Passwordless: before 10.1.

Vulnerability class: Race Condition

EPSS: 0.001 (1.0th percentile) — read the EPSS interpretation.

Affected products

Hypr Passwordless — versions 0

Weakness classification (CWE)

CWE-362 — Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)

References

security@hypr.com