Telekom Account_management_portal
2 CVEs affecting Telekom Account_management_portal. Latest disclosed: 2026-03-10. Critical: 2, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-69614 | Critical | 9.4 | 2026-03-10 | Incorrect Access Control via activation token reuse on the password-reset endpoint allowing unauthorized password resets and full account takeover. Affected Pr… |
CVE-2025-69615 | Critical | 9.1 | 2026-03-10 | Incorrect Access Control via missing 2FA rate-limiting allowing unlimited brute-force retries and full MFA bypass with no user interaction required. Affected P… |