Release of authentik Security releases 2025.8.5 and 2025.10.2
20 views
Skip to first unread message
authentik Security Announcements
Nov 12, 2025, 12:15:17 PMNov 12
to authentik Security Announcements
We'll be publishing a security Release following our annual Pentest, which will fix two CVEs and add additional security improvements on 2025-11-19, 13:00 UTC.
The CVEs (CVE-2025-64521 and CVE-2025-64708) have the Severity level Medium.
Fixed versions 2025.10.2 and 2025.8.5 will be released alongside a workaround for previous versions.
The CVEs (CVE-2025-64521 and CVE-2025-64708) have the Severity level Medium.
Fixed versions 2025.10.2 and 2025.8.5 will be released alongside a workaround for previous versions.
We've also updated our security release process, meaning that fixed images will be available directly after the announcement.
For more info, see the authentik Security policy here: https://docs.goauthentik.io/security/policy.
Reply all
Reply to author
Forward
0 new messages