CVE 9.3 CRITICAL

Improper Authentication in lunary-ai/lunary_CVE-2025-9803

December 9, 2025 invoker category_cve

9.3 / 10

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

Description

lunary-ai/lunary version 1.9.34 is vulnerable to an account takeover due to improper authentication in the Google OAuth integration. The application fails to verify the 'aud' (audience) field in the access token issued by Google, which is crucial for ensuring the token is intended for the application. This oversight allows attackers to use tokens issued to malicious applications to gain unauthorized access to user accounts. The issue is resolved in version 1.9.35.

AI Analysis

Account takeover vulnerability due to improper authentication in Google OAuth integration

Basic Information

ID CVE-2025-9803

Source @huntr_ai

Published Nov 25, 2025 at 00:00

Modified Nov 25, 2025 at 18:35

Affected Product

Vendor lunary-ai

Product lunary-ai/lunary

Version 1.9.34

Affected Versions lunary-ai lunary-ai/lunary unspecified

CWE Classification

CWE-287

AI Assessment

AI Score 9.3 / 10

AI Severity Critical

Vendor lunary-ai

Product lunary-ai/lunary

Version 1.9.34

References

{
    "lastseen": "",
    "description": "lunary-ai/lunary version 1.9.34 is vulnerable to an account takeover due to improper authentication in the Google OAuth integration. The application fails to verify the 'aud' (audience) field in the access token issued by Google, which is crucial for ensuring the token is intended for the application. This oversight allows attackers to use tokens issued to malicious applications to gain unauthorized access to user accounts. The issue is resolved in version 1.9.35.",
    "published": "2025-11-25T00:00:35.380Z",
    "modified": "2025-11-25T18:35:17.845Z",
    "type": "cve",
    "title": "Improper Authentication in lunary-ai/lunary",
    "source": "@huntr_ai",
    "references": "https://huntr.com/bounties/4734f35f-514c-4d10-98fa-3a54514f6af6\nhttps://github.com/lunary-ai/lunary/commit/95a2cc8e012bf5f089edbfa072ba66dcb7e10d91",
    "id": "CVE-2025-9803",
    "bulletinFamily": "",
    "cwe": [
        "CWE-287"
    ],
    "cvelist": null,
    "sourceData": "lunary-ai lunary-ai/lunary unspecified",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N",
        "version": "3.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "lunary-ai/lunary",
    "version": "1.9.34",
    "vendor": "lunary-ai",
    "ai_description": "Account takeover vulnerability due to improper authentication in Google OAuth integration",
    "ai_severity": "Critical",
    "ai_vendor": "lunary-ai",
    "ai_product": "lunary-ai/lunary",
    "ai_version": "1.9.34",
    "ai_score": 9.3
}

💭 Join the Security Discussion ❌ Cancel Reply