Home > Vulnerability Database > CVE-2025-58352

Mend.io Vulnerability Database

CVE-2025-58352

Good to know:

Date: September 4, 2025

Weblate is a web based localization tool. Versions lower than 5.13.1 contain a vulnerability that causes long session expiry during the second factor verification. The long session expiry could be used to circumvent rate limiting of the second factor. This issue is fixed in version 5.13.1.

Severity Score

8.6

Related Resources (6)

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-58352

Url: https://github.com/WeblateOrg/weblate/commit/0b46fe596231dd456283ead66699ae5516f23908

Url: https://github.com/WeblateOrg/weblate

Url: https://github.com/WeblateOrg/weblate/pull/16002

Url: https://github.com/WeblateOrg/weblate/security/advisories/GHSA-377j-wj38-4728

Url: https://www.mend.io/vulnerability-database/CVE-2025-58352

Severity Score

8.6

Weakness Type (CWE)

Insufficient Session Expiration

CWE-613

Top Fix

Upgrade Version

Upgrade to version Weblate - 5.13.1;https://github.com/WeblateOrg/weblate.git - weblate-5.13.1

Learn More

CVSS v3.1

Base Score:	8.6
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-58352

Good to know:

Date: September 4, 2025

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?