CVE-2025-67846

4.9 MEDIUM

Published: December 19, 2025 Modified: January 02, 2026

Description

The Deployment Infrastructure in Mintlify Platform before 2025-11-15 allows remote attackers to bypass security patches and execute downgrade attacks via predictable deployment identifiers on the Vercel preview domain. An attacker can identify the URL structure of a previous deployment that contains unpatched vulnerabilities. By browsing directly to the specific git-ref or deployment-id subdomain, the attacker can force the application to load the vulnerable version.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://kibty.town/blog/mintlify/

Source: cve@mitre.org

Exploit Third Party Advisory

https://news.ycombinator.com/item?id=46317098

Source: cve@mitre.org

Issue Tracking

https://www.mintlify.com/blog/working-with-security-researchers-november-2025

Source: cve@mitre.org

Vendor Advisory

https://www.mintlify.com/docs/changelog

Source: cve@mitre.org

Release Notes

4 reference(s) from NVD

Quick Stats

CVSS v3 Score

4.9 / 10.0

EPSS (Exploit Probability)

0.1%

19th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-472

Affected Vendors

mintlify

Related CVEs

CVE-2026-4775 7.8

CVE-2026-33554 N/A

CVE-2026-33316 8.1

CVE-2026-33315 N/A

CVE-2026-33313 N/A