CVE-2025-8864

🗓️ 11 Aug 2025 13:30:09Reported by YugabyteType

CVE-2025-8864: SAS token not masked in backup config response and exposed in yb_backup logs

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-8864	11 Aug 202514:01	–	circl
CNNVD	YugabyteDB 安全漏洞	11 Aug 202500:00	–	cnnvd
Cvelist	CVE-2025-8864	11 Aug 202513:30	–	cvelist
EUVD	EUVD-2025-24151	3 Oct 202520:07	–	euvd
NVD	CVE-2025-8864	11 Aug 202514:15	–	nvd
Positive Technologies	PT-2025-32546 · Yb Backup · Yb Backup	11 Aug 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-8864	11 Aug 202518:31	–	redhatcve
Vulnrichment	CVE-2025-8864	11 Aug 202513:30	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "packageName": "yugaware",
    "platforms": [
      "MacOS",
      "Linux",
      "x86",
      "ARM"
    ],
    "product": "YugabyteDB Anywhere",
    "vendor": "YugabyteDB Inc",
    "versions": [
      {
        "lessThan": "2.20.7.0",
        "status": "unaffected",
        "version": "2.20.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2.23.1.0",
        "status": "affected",
        "version": "2.23.0.0",
        "versionType": "custom"
      },
      {
        "lessThan": "2024.1.3.0",
        "status": "affected",
        "version": "2024.1.0.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
docs	www.docs.yugabyte.com/preview/secure/vulnerability-disclosure-policy/

15 Apr 2026 00:35Current

7.2High risk

Vulners AI Score7.2

CVSS 46.8

EPSS0.00032

SSVC

CWE-532