Cal.com Authentication Bypass via bad TOTP + password checks

9.9 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N

Description

Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.

AI Analysis

Authentication bypass vulnerability in Cal.com due to flawed TOTP and password checks

Basic Information

ID CVE-2025-66489

Source GitHub_M

Published Dec 3, 2025 at 19:44

Modified Dec 3, 2025 at 21:48

Affected Product

Vendor calcom

Product cal.com

Version < 5.9.8

Affected Versions calcom cal.com < 5.9.8

CWE Classification

CWE-303

AI Assessment

AI Score 9.9 / 10

AI Severity Critical

Vendor Calcom

Product Cal.com

Version < 5.9.8

References

github.com /calcom/cal.com/security/advisories/GHSA-9r3w-4j8q-pw98

{
    "lastseen": "",
    "description": "Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.",
    "published": "2025-12-03T19:44:35.303Z",
    "modified": "2025-12-03T21:48:27.861Z",
    "type": "cve",
    "title": "Cal.com Authentication Bypass via bad TOTP + password checks",
    "source": "GitHub_M",
    "references": "https://github.com/calcom/cal.com/security/advisories/GHSA-9r3w-4j8q-pw98",
    "id": "CVE-2025-66489",
    "bulletinFamily": "",
    "cwe": [
        "CWE-303"
    ],
    "cvelist": null,
    "sourceData": "calcom cal.com < 5.9.8",
    "sourceHref": "",
    "cvss": {
        "score": 9.9,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "cal.com",
    "version": "< 5.9.8",
    "vendor": "calcom",
    "ai_description": "Authentication bypass vulnerability in Cal.com due to flawed TOTP and password checks",
    "ai_severity": "Critical",
    "ai_vendor": "Calcom",
    "ai_product": "Cal.com",
    "ai_version": "< 5.9.8",
    "ai_score": 9.9
}

Cal.com Authentication Bypass via bad TOTP + password checks_CVE-2025-66489