Critical Teleport Vulnerability Allows Remote Authentication Bypass
A critical security vulnerability, tracked as CVE-2025-49825, has been discovered in Teleport, a widely used open-source platform for secure access to servers, cloud applications, and infrastructure.
This flaw enables remote attackers to bypass authentication controls, potentially granting unauthorized access to sensitive systems managed by Teleport.
The Vulnerability
The vulnerability affects Teleport Community Edition versions up to 17.5.1, as well as earlier major releases.
Both self-hosted and cloud deployments are impacted, particularly those running Teleport SSH agents, OpenSSH-integrated deployments, and Teleport Git proxy setups.
The issue, assigned a CVSS score of 9.8 (critical), allows remote attackers to bypass SSH authentication, effectively circumventing standard security measures and gaining unauthorized access to systems.
| Field | Details |
| CVE ID | CVE-2025-49825 |
| Severity | Critical (CVSS 9.8) |
| Affected Versions | < 17.5.2, < 16.5.12, < 15.5.3, < 14.4.1, < 13.4.27, < 12.4.35 |
| Patched Versions | 17.5.2, 16.5.12, 15.5.3, 14.4.1, 13.4.27, 12.4.35 |
While there is currently no public proof-of-concept exploit and no evidence of active exploitation, the severity of the flaw has prompted urgent action from security teams.
Immediate Actions and Mitigation
Teleport has released patched versions to address the vulnerability:
- 17.5.2
- 16.5.12
- 15.5.3
- 14.4.1
- 13.4.27
- 12.4.35
For Teleport Cloud customers, control plane updates were applied automatically. Agents enrolled in Managed Updates v2 were updated during the scheduled maintenance window.
However, self-hosted users must manually upgrade all Teleport agents and proxies to the patched versions matching their cluster’s major version.
- Identify agents not enrolled in Managed Updates v2 using tctl inventory ls commands.
- Upgrade these agents using standard package managers (apt, yum) or enroll them in Managed Updates v2 by running sudo teleport-update enable.
- For Kubernetes deployments, use the teleport-kube-agent updater.
Organizations using Teleport should act immediately to patch vulnerable systems and ensure all agents are updated.
While cloud customers benefit from automatic updates, self-hosted environments require manual intervention to fully mitigate the risk.
The vulnerability underscores the importance of timely patching and robust update management for critical infrastructure.
Find this News Interesting! Follow us on Google News, LinkedIn, and X to Get Instant Updates
Source link
