Security Advisory

CVE-2025-6675

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-26 13:33:35

Last updated 2026-02-26 17:50:22

Assigner drupal

State PUBLISHED

Description

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Enterprise MFA - TFA for Drupal allows Authentication Bypass.This issue affects Enterprise MFA - TFA for Drupal: from 0.0.0 before 4.8.0, from 5.2.0 before 5.2.1, from 0.0.0 before 5.0.*, from 0.0.0 before 5.1.*.

← Browse all CVEs View on cve.org ↗