Telekom Account Management Portal — known CVE vulnerabilities
Every CVE whose affected-product data names Telekom Account Management Portal, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2025-69614 — CVSS 9.4 (critical): Incorrect Access Control via activation token reuse on the password-reset endpoint allowing unauthorized password resets and full account…
CVE-2025-69615 — CVSS 9.1 (critical): Incorrect Access Control via missing 2FA rate-limiting allowing unlimited brute-force retries and full MFA bypass with no user interaction…