AuthKit React Router: Sensitive auth data rendered in HTML

7.1 / 10

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L

Description

The AuthKit library for React Router 7+ provides helpers for authentication and session management using WorkOS & AuthKit with React Router. In versions 0.6.1 and below, @workos-inc/authkit-react-router exposed sensitive authentication artifacts — specifically sealedSession and accessToken by returning them from the authkitLoader. This caused them to be rendered into the browser HTML. This issue is fixed in version 0.7.0.

Basic Information

ID CVE-2025-55008

Source GitHub_M

Published Aug 9, 2025 at 02:02

Affected Product

Vendor workos

Product authkit-react-router

Version < 0.7.0

Affected Versions workos authkit-react-router < 0.7.0

CWE Classification

CWE-200

References

{
    "lastseen": "",
    "description": "The AuthKit library for React Router 7+ provides helpers for authentication and session management using WorkOS & AuthKit with React Router. In versions 0.6.1 and below, @workos-inc/authkit-react-router exposed sensitive authentication artifacts \u2014 specifically sealedSession and accessToken by returning them from the authkitLoader. This caused them to be rendered into the browser HTML. This issue is fixed in version 0.7.0.",
    "published": "2025-08-09T02:02:14.950Z",
    "modified": "2025-08-09T02:02:14.950Z",
    "type": "cve",
    "title": "AuthKit React Router: Sensitive auth data rendered in HTML",
    "source": "GitHub_M",
    "references": "https://github.com/workos/authkit-react-router/security/advisories/GHSA-vqvc-9q8x-vmq6\nhttps://github.com/workos/authkit-react-router/commit/607caac658784962bab76e227f9c5820d0b9a9e5\nhttps://github.com/workos/authkit-react-router/releases/tag/v0.7.0",
    "id": "CVE-2025-55008",
    "bulletinFamily": "",
    "cwe": [
        "CWE-200"
    ],
    "cvelist": null,
    "sourceData": "workos authkit-react-router < 0.7.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "authkit-react-router",
    "version": "< 0.7.0",
    "vendor": "workos",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

AuthKit React Router: Sensitive auth data rendered in HTML_CVE-2025-55008