Authentication Bypass Using an Alternate Path or Channel

CVE-2025-66200

Medium

5.4/10

Summary

mod_userdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server versions. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid. This issue affects Apache HTTP Server: from 2.4.7 through 2.4.65.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: LOW
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: NONE
Availability Impact: LOW

CWE-288 - Authentication Bypass Using an Alternate Path or Channel

A product requires authentication, but the product has an alternate path or channel that does not require authentication.

References

Advisory
Advisory

Advisory Timeline

Published Dec 05, 2025

Authentication Bypass Using an Alternate Path or Channel

CVE-2025-66200

Summary

CWE-288 - Authentication Bypass Using an Alternate Path or Channel

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS