CVE-2025-35433
Published
CVSS v3
5
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
CISA Thorium does not properly invalidate previously used tokens when resetting passwords. An attacker that possesses a previously used token could still log in after a password reset. Fixed in 1.1.1.
A scalable file analysis and data generation platform that allows users to easily orchestrate arbitrary docker/vm/shell tools at scale.
GitHub