Cyber Resilience

CVE-2025-70997

MediumPublic PoC

Published: 04 February 2026

Published
04 February 2026
Modified
12 February 2026
KEV Added
Patch
CVSS Score v3.1 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS Score 0.0019 8.3th percentile
Risk Priority 35 floored blend · peak EPSS

Summary

CVE-2025-70997 is a medium-severity Incorrect Authorization (CWE-863) vulnerability in Eladmin Eladmin. Its CVSS base score is 6.5 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 8.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and AC-14 (Permitted Actions Without Identification or Authentication).

Deeper analysis

CVE-2025-70997 is a vulnerability affecting eladmin versions 2.7 and earlier. It enables arbitrary user password resets regardless of the attacker's permission level, stemming from improper access control and incorrect authorization issues classified under CWE-863 and CWE-284. The vulnerability carries a CVSS v3.1 base score of 6.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N), indicating medium severity with network accessibility, low attack complexity, no privileges or user interaction required, and limited impacts on confidentiality and integrity.

An unauthenticated remote attacker can exploit this vulnerability over the network with minimal effort. By leveraging the flaw, the attacker can reset the password of any user account, potentially gaining unauthorized access to that account and escalating privileges if targeting administrative users.

For mitigation details, refer to the advisories and resources at the eladmin GitHub repository (https://github.com/elunez/eladmin) and the related CVE issue tracker (https://github.com/fofo137/CVE/issues/1), which may include patches or workarounds for affected versions. The vulnerability was published on 2026-02-04.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

A vulnerability has been discovered in eladmin v2.7 and before. This vulnerability allows for an arbitrary user password reset under any user permission level.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1098 Account Manipulation Persistence
Adversaries may manipulate accounts to maintain and/or elevate access to victim systems.
Why these techniques?

Vulnerability in public-facing web app enables unauthenticated password reset (account manipulation) leading to unauthorized access.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-2855Same product: Eladmin Eladmin
CVE-2025-22978Same product: Eladmin Eladmin
CVE-2024-57032Shared CWE-284, CWE-863
CVE-2025-27646Shared CWE-284
CVE-2025-0744Shared CWE-284
CVE-2025-22940Shared CWE-284
CVE-2026-25660Shared CWE-863
CVE-2026-33031Shared CWE-284, CWE-863
CVE-2026-24740Shared CWE-284, CWE-863
CVE-2024-46432Shared CWE-284

Affected Assets

eladmin
eladmin
≤ 2.7

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly enforces authorization checks on password-reset operations so that only permitted users can reset accounts, blocking the unauthenticated arbitrary-reset flaw.

prevent

Restricts the password-reset function to the minimum set of authorized roles, eliminating the ability for any permission level to perform the action.

prevent

Explicitly defines which actions (including password reset) may be performed without identification or authentication, preventing the vulnerable endpoint from being reachable anonymously.

References