CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-65107

Langfuse is an open source large language model engineering platform. In versions from 2.95.0 to before 2.95.12 and from 3.17.0 to before 3.131.0, in SSO provider configurations without an explicit AUTH_<PROVIDER>_CHECK setting, a potential account takeover may happen if an authenticated user is made to call a specifically crafted URL via a CSRF or phishing attack. This issue has been patched in versions 2.95.12 and 3.131.0. A workaround for this issue involves setting AUTH_<PROVIDER>_CHECK.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.1%

CVSS Severity

CVSS v3 Score 6.5

References

https://github.com/langfuse/langfuse/security/advisories/GHSA-w9pw-c549-5m6w

Products affected by CVE-2025-65107

Langfuse » Langfuse » Version: 2.95.0

cpe:2.3:a:langfuse:langfuse:2.95.0
Langfuse » Langfuse » Version: 2.95.1

cpe:2.3:a:langfuse:langfuse:2.95.1
Langfuse » Langfuse » Version: 2.95.10

cpe:2.3:a:langfuse:langfuse:2.95.10
Langfuse » Langfuse » Version: 2.95.11

cpe:2.3:a:langfuse:langfuse:2.95.11
Langfuse » Langfuse » Version: 2.95.2

cpe:2.3:a:langfuse:langfuse:2.95.2
Langfuse » Langfuse » Version: 2.95.3

cpe:2.3:a:langfuse:langfuse:2.95.3
Langfuse » Langfuse » Version: 2.95.4

cpe:2.3:a:langfuse:langfuse:2.95.4
Langfuse » Langfuse » Version: 2.95.5

cpe:2.3:a:langfuse:langfuse:2.95.5
Langfuse » Langfuse » Version: 2.95.6

cpe:2.3:a:langfuse:langfuse:2.95.6
Langfuse » Langfuse » Version: 2.95.7

cpe:2.3:a:langfuse:langfuse:2.95.7
Langfuse » Langfuse » Version: 2.95.8

cpe:2.3:a:langfuse:langfuse:2.95.8
Langfuse » Langfuse » Version: 2.95.9

cpe:2.3:a:langfuse:langfuse:2.95.9
Langfuse » Langfuse » Version: 3.100.0

cpe:2.3:a:langfuse:langfuse:3.100.0
Langfuse » Langfuse » Version: 3.101.0

cpe:2.3:a:langfuse:langfuse:3.101.0
Langfuse » Langfuse » Version: 3.102.0

cpe:2.3:a:langfuse:langfuse:3.102.0
Langfuse » Langfuse » Version: 3.103.0

cpe:2.3:a:langfuse:langfuse:3.103.0
Langfuse » Langfuse » Version: 3.104.0

cpe:2.3:a:langfuse:langfuse:3.104.0
Langfuse » Langfuse » Version: 3.105.0

cpe:2.3:a:langfuse:langfuse:3.105.0
Langfuse » Langfuse » Version: 3.106.0

cpe:2.3:a:langfuse:langfuse:3.106.0
Langfuse » Langfuse » Version: 3.106.1

cpe:2.3:a:langfuse:langfuse:3.106.1
Langfuse » Langfuse » Version: 3.106.2

cpe:2.3:a:langfuse:langfuse:3.106.2
Langfuse » Langfuse » Version: 3.106.3

cpe:2.3:a:langfuse:langfuse:3.106.3
Langfuse » Langfuse » Version: 3.106.4

cpe:2.3:a:langfuse:langfuse:3.106.4
Langfuse » Langfuse » Version: 3.107.0

cpe:2.3:a:langfuse:langfuse:3.107.0
Langfuse » Langfuse » Version: 3.108.0

cpe:2.3:a:langfuse:langfuse:3.108.0
Langfuse » Langfuse » Version: 3.109.0

cpe:2.3:a:langfuse:langfuse:3.109.0
Langfuse » Langfuse » Version: 3.110.0

cpe:2.3:a:langfuse:langfuse:3.110.0
Langfuse » Langfuse » Version: 3.111.0

cpe:2.3:a:langfuse:langfuse:3.111.0
Langfuse » Langfuse » Version: 3.112.0

cpe:2.3:a:langfuse:langfuse:3.112.0
Langfuse » Langfuse » Version: 3.113.0

cpe:2.3:a:langfuse:langfuse:3.113.0
Langfuse » Langfuse » Version: 3.114.0

cpe:2.3:a:langfuse:langfuse:3.114.0
Langfuse » Langfuse » Version: 3.115.0

cpe:2.3:a:langfuse:langfuse:3.115.0
Langfuse » Langfuse » Version: 3.116.0

cpe:2.3:a:langfuse:langfuse:3.116.0
Langfuse » Langfuse » Version: 3.116.1

cpe:2.3:a:langfuse:langfuse:3.116.1
Langfuse » Langfuse » Version: 3.117.0

cpe:2.3:a:langfuse:langfuse:3.117.0
Langfuse » Langfuse » Version: 3.117.1

cpe:2.3:a:langfuse:langfuse:3.117.1
Langfuse » Langfuse » Version: 3.117.2

cpe:2.3:a:langfuse:langfuse:3.117.2
Langfuse » Langfuse » Version: 3.118.0

cpe:2.3:a:langfuse:langfuse:3.118.0
Langfuse » Langfuse » Version: 3.119.0

cpe:2.3:a:langfuse:langfuse:3.119.0
Langfuse » Langfuse » Version: 3.119.1

cpe:2.3:a:langfuse:langfuse:3.119.1
Langfuse » Langfuse » Version: 3.120.0

cpe:2.3:a:langfuse:langfuse:3.120.0
Langfuse » Langfuse » Version: 3.121.0

cpe:2.3:a:langfuse:langfuse:3.121.0
Langfuse » Langfuse » Version: 3.122.0

cpe:2.3:a:langfuse:langfuse:3.122.0
Langfuse » Langfuse » Version: 3.122.1

cpe:2.3:a:langfuse:langfuse:3.122.1
Langfuse » Langfuse » Version: 3.122.2

cpe:2.3:a:langfuse:langfuse:3.122.2
Langfuse » Langfuse » Version: 3.123.0

cpe:2.3:a:langfuse:langfuse:3.123.0
Langfuse » Langfuse » Version: 3.123.1

cpe:2.3:a:langfuse:langfuse:3.123.1
Langfuse » Langfuse » Version: 3.124.0

cpe:2.3:a:langfuse:langfuse:3.124.0
Langfuse » Langfuse » Version: 3.124.1

cpe:2.3:a:langfuse:langfuse:3.124.1
Langfuse » Langfuse » Version: 3.125.0

cpe:2.3:a:langfuse:langfuse:3.125.0
Langfuse » Langfuse » Version: 3.126.0

cpe:2.3:a:langfuse:langfuse:3.126.0
Langfuse » Langfuse » Version: 3.126.1

cpe:2.3:a:langfuse:langfuse:3.126.1
Langfuse » Langfuse » Version: 3.127.0

cpe:2.3:a:langfuse:langfuse:3.127.0
Langfuse » Langfuse » Version: 3.128.0

cpe:2.3:a:langfuse:langfuse:3.128.0
Langfuse » Langfuse » Version: 3.129.0

cpe:2.3:a:langfuse:langfuse:3.129.0
Langfuse » Langfuse » Version: 3.130.0

cpe:2.3:a:langfuse:langfuse:3.130.0
Langfuse » Langfuse » Version: 3.17.0

cpe:2.3:a:langfuse:langfuse:3.17.0
Langfuse » Langfuse » Version: 3.17.1

cpe:2.3:a:langfuse:langfuse:3.17.1
Langfuse » Langfuse » Version: 3.18.0

cpe:2.3:a:langfuse:langfuse:3.18.0
Langfuse » Langfuse » Version: 3.19.0

cpe:2.3:a:langfuse:langfuse:3.19.0
Langfuse » Langfuse » Version: 3.20.0

cpe:2.3:a:langfuse:langfuse:3.20.0
Langfuse » Langfuse » Version: 3.21.0

cpe:2.3:a:langfuse:langfuse:3.21.0
Langfuse » Langfuse » Version: 3.22.0

cpe:2.3:a:langfuse:langfuse:3.22.0
Langfuse » Langfuse » Version: 3.23.0

cpe:2.3:a:langfuse:langfuse:3.23.0
Langfuse » Langfuse » Version: 3.24.0

cpe:2.3:a:langfuse:langfuse:3.24.0
Langfuse » Langfuse » Version: 3.24.1

cpe:2.3:a:langfuse:langfuse:3.24.1
Langfuse » Langfuse » Version: 3.25.0

cpe:2.3:a:langfuse:langfuse:3.25.0
Langfuse » Langfuse » Version: 3.26.0

cpe:2.3:a:langfuse:langfuse:3.26.0
Langfuse » Langfuse » Version: 3.27.0

cpe:2.3:a:langfuse:langfuse:3.27.0
Langfuse » Langfuse » Version: 3.27.1

cpe:2.3:a:langfuse:langfuse:3.27.1
Langfuse » Langfuse » Version: 3.27.2

cpe:2.3:a:langfuse:langfuse:3.27.2
Langfuse » Langfuse » Version: 3.28.0

cpe:2.3:a:langfuse:langfuse:3.28.0
Langfuse » Langfuse » Version: 3.28.1

cpe:2.3:a:langfuse:langfuse:3.28.1
Langfuse » Langfuse » Version: 3.28.2

cpe:2.3:a:langfuse:langfuse:3.28.2
Langfuse » Langfuse » Version: 3.28.3

cpe:2.3:a:langfuse:langfuse:3.28.3
Langfuse » Langfuse » Version: 3.29.0

cpe:2.3:a:langfuse:langfuse:3.29.0
Langfuse » Langfuse » Version: 3.29.1

cpe:2.3:a:langfuse:langfuse:3.29.1
Langfuse » Langfuse » Version: 3.30.0

cpe:2.3:a:langfuse:langfuse:3.30.0
Langfuse » Langfuse » Version: 3.31.0

cpe:2.3:a:langfuse:langfuse:3.31.0
Langfuse » Langfuse » Version: 3.32.0

cpe:2.3:a:langfuse:langfuse:3.32.0
Langfuse » Langfuse » Version: 3.32.1

cpe:2.3:a:langfuse:langfuse:3.32.1
Langfuse » Langfuse » Version: 3.33.0

cpe:2.3:a:langfuse:langfuse:3.33.0
Langfuse » Langfuse » Version: 3.33.1

cpe:2.3:a:langfuse:langfuse:3.33.1
Langfuse » Langfuse » Version: 3.34.0

cpe:2.3:a:langfuse:langfuse:3.34.0
Langfuse » Langfuse » Version: 3.34.1

cpe:2.3:a:langfuse:langfuse:3.34.1
Langfuse » Langfuse » Version: 3.35.0

cpe:2.3:a:langfuse:langfuse:3.35.0
Langfuse » Langfuse » Version: 3.35.1

cpe:2.3:a:langfuse:langfuse:3.35.1
Langfuse » Langfuse » Version: 3.36.0

cpe:2.3:a:langfuse:langfuse:3.36.0
Langfuse » Langfuse » Version: 3.37.0

cpe:2.3:a:langfuse:langfuse:3.37.0
Langfuse » Langfuse » Version: 3.38.0

cpe:2.3:a:langfuse:langfuse:3.38.0
Langfuse » Langfuse » Version: 3.39.0

cpe:2.3:a:langfuse:langfuse:3.39.0
Langfuse » Langfuse » Version: 3.40.0

cpe:2.3:a:langfuse:langfuse:3.40.0
Langfuse » Langfuse » Version: 3.41.0

cpe:2.3:a:langfuse:langfuse:3.41.0
Langfuse » Langfuse » Version: 3.41.1

cpe:2.3:a:langfuse:langfuse:3.41.1
Langfuse » Langfuse » Version: 3.42.0

cpe:2.3:a:langfuse:langfuse:3.42.0
Langfuse » Langfuse » Version: 3.42.1

cpe:2.3:a:langfuse:langfuse:3.42.1
Langfuse » Langfuse » Version: 3.43.0

cpe:2.3:a:langfuse:langfuse:3.43.0
Langfuse » Langfuse » Version: 3.44.0

cpe:2.3:a:langfuse:langfuse:3.44.0
Langfuse » Langfuse » Version: 3.44.1-0

cpe:2.3:a:langfuse:langfuse:3.44.1-0
Langfuse » Langfuse » Version: 3.45.0

cpe:2.3:a:langfuse:langfuse:3.45.0
Langfuse » Langfuse » Version: 3.45.1

cpe:2.3:a:langfuse:langfuse:3.45.1
Langfuse » Langfuse » Version: 3.45.2

cpe:2.3:a:langfuse:langfuse:3.45.2
Langfuse » Langfuse » Version: 3.46.0

cpe:2.3:a:langfuse:langfuse:3.46.0
Langfuse » Langfuse » Version: 3.47.0

cpe:2.3:a:langfuse:langfuse:3.47.0
Langfuse » Langfuse » Version: 3.48.0

cpe:2.3:a:langfuse:langfuse:3.48.0
Langfuse » Langfuse » Version: 3.48.1

cpe:2.3:a:langfuse:langfuse:3.48.1
Langfuse » Langfuse » Version: 3.49.0

cpe:2.3:a:langfuse:langfuse:3.49.0
Langfuse » Langfuse » Version: 3.49.1

cpe:2.3:a:langfuse:langfuse:3.49.1
Langfuse » Langfuse » Version: 3.50.0

cpe:2.3:a:langfuse:langfuse:3.50.0
Langfuse » Langfuse » Version: 3.51.0

cpe:2.3:a:langfuse:langfuse:3.51.0
Langfuse » Langfuse » Version: 3.51.1

cpe:2.3:a:langfuse:langfuse:3.51.1
Langfuse » Langfuse » Version: 3.51.2

cpe:2.3:a:langfuse:langfuse:3.51.2
Langfuse » Langfuse » Version: 3.52.0

cpe:2.3:a:langfuse:langfuse:3.52.0
Langfuse » Langfuse » Version: 3.53.0

cpe:2.3:a:langfuse:langfuse:3.53.0
Langfuse » Langfuse » Version: 3.54.0

cpe:2.3:a:langfuse:langfuse:3.54.0
Langfuse » Langfuse » Version: 3.54.1

cpe:2.3:a:langfuse:langfuse:3.54.1
Langfuse » Langfuse » Version: 3.55.0

cpe:2.3:a:langfuse:langfuse:3.55.0
Langfuse » Langfuse » Version: 3.56.0

cpe:2.3:a:langfuse:langfuse:3.56.0
Langfuse » Langfuse » Version: 3.57.0

cpe:2.3:a:langfuse:langfuse:3.57.0
Langfuse » Langfuse » Version: 3.57.1

cpe:2.3:a:langfuse:langfuse:3.57.1
Langfuse » Langfuse » Version: 3.57.2

cpe:2.3:a:langfuse:langfuse:3.57.2
Langfuse » Langfuse » Version: 3.58.0

cpe:2.3:a:langfuse:langfuse:3.58.0
Langfuse » Langfuse » Version: 3.59.0

cpe:2.3:a:langfuse:langfuse:3.59.0
Langfuse » Langfuse » Version: 3.59.1

cpe:2.3:a:langfuse:langfuse:3.59.1
Langfuse » Langfuse » Version: 3.60.0

cpe:2.3:a:langfuse:langfuse:3.60.0
Langfuse » Langfuse » Version: 3.60.1

cpe:2.3:a:langfuse:langfuse:3.60.1
Langfuse » Langfuse » Version: 3.61.0

cpe:2.3:a:langfuse:langfuse:3.61.0
Langfuse » Langfuse » Version: 3.62.0

cpe:2.3:a:langfuse:langfuse:3.62.0
Langfuse » Langfuse » Version: 3.62.1

cpe:2.3:a:langfuse:langfuse:3.62.1
Langfuse » Langfuse » Version: 3.63.0

cpe:2.3:a:langfuse:langfuse:3.63.0
Langfuse » Langfuse » Version: 3.63.1

cpe:2.3:a:langfuse:langfuse:3.63.1
Langfuse » Langfuse » Version: 3.64.0

cpe:2.3:a:langfuse:langfuse:3.64.0
Langfuse » Langfuse » Version: 3.65.0

cpe:2.3:a:langfuse:langfuse:3.65.0
Langfuse » Langfuse » Version: 3.65.1

cpe:2.3:a:langfuse:langfuse:3.65.1
Langfuse » Langfuse » Version: 3.65.2

cpe:2.3:a:langfuse:langfuse:3.65.2
Langfuse » Langfuse » Version: 3.65.3

cpe:2.3:a:langfuse:langfuse:3.65.3
Langfuse » Langfuse » Version: 3.66.0

cpe:2.3:a:langfuse:langfuse:3.66.0
Langfuse » Langfuse » Version: 3.66.1

cpe:2.3:a:langfuse:langfuse:3.66.1
Langfuse » Langfuse » Version: 3.67.0

cpe:2.3:a:langfuse:langfuse:3.67.0
Langfuse » Langfuse » Version: 3.67.1-2

cpe:2.3:a:langfuse:langfuse:3.67.1-2
Langfuse » Langfuse » Version: 3.68.0

cpe:2.3:a:langfuse:langfuse:3.68.0
Langfuse » Langfuse » Version: 3.69.0

cpe:2.3:a:langfuse:langfuse:3.69.0
Langfuse » Langfuse » Version: 3.70.0

cpe:2.3:a:langfuse:langfuse:3.70.0
Langfuse » Langfuse » Version: 3.71.0

cpe:2.3:a:langfuse:langfuse:3.71.0
Langfuse » Langfuse » Version: 3.72.0

cpe:2.3:a:langfuse:langfuse:3.72.0
Langfuse » Langfuse » Version: 3.72.1

cpe:2.3:a:langfuse:langfuse:3.72.1
Langfuse » Langfuse » Version: 3.72.2-0

cpe:2.3:a:langfuse:langfuse:3.72.2-0
Langfuse » Langfuse » Version: 3.72.2-1

cpe:2.3:a:langfuse:langfuse:3.72.2-1
Langfuse » Langfuse » Version: 3.73.0

cpe:2.3:a:langfuse:langfuse:3.73.0
Langfuse » Langfuse » Version: 3.73.1

cpe:2.3:a:langfuse:langfuse:3.73.1
Langfuse » Langfuse » Version: 3.74.0

cpe:2.3:a:langfuse:langfuse:3.74.0
Langfuse » Langfuse » Version: 3.75.0

cpe:2.3:a:langfuse:langfuse:3.75.0
Langfuse » Langfuse » Version: 3.75.1

cpe:2.3:a:langfuse:langfuse:3.75.1
Langfuse » Langfuse » Version: 3.75.2

cpe:2.3:a:langfuse:langfuse:3.75.2
Langfuse » Langfuse » Version: 3.75.3

cpe:2.3:a:langfuse:langfuse:3.75.3
Langfuse » Langfuse » Version: 3.75.4

cpe:2.3:a:langfuse:langfuse:3.75.4
Langfuse » Langfuse » Version: 3.76.0

cpe:2.3:a:langfuse:langfuse:3.76.0
Langfuse » Langfuse » Version: 3.77.0

cpe:2.3:a:langfuse:langfuse:3.77.0
Langfuse » Langfuse » Version: 3.78.0

cpe:2.3:a:langfuse:langfuse:3.78.0
Langfuse » Langfuse » Version: 3.78.1

cpe:2.3:a:langfuse:langfuse:3.78.1
Langfuse » Langfuse » Version: 3.78.2

cpe:2.3:a:langfuse:langfuse:3.78.2
Langfuse » Langfuse » Version: 3.79.0

cpe:2.3:a:langfuse:langfuse:3.79.0
Langfuse » Langfuse » Version: 3.79.1

cpe:2.3:a:langfuse:langfuse:3.79.1
Langfuse » Langfuse » Version: 3.80.0

cpe:2.3:a:langfuse:langfuse:3.80.0
Langfuse » Langfuse » Version: 3.80.1

cpe:2.3:a:langfuse:langfuse:3.80.1
Langfuse » Langfuse » Version: 3.81.0

cpe:2.3:a:langfuse:langfuse:3.81.0
Langfuse » Langfuse » Version: 3.81.1

cpe:2.3:a:langfuse:langfuse:3.81.1
Langfuse » Langfuse » Version: 3.82.0

cpe:2.3:a:langfuse:langfuse:3.82.0
Langfuse » Langfuse » Version: 3.83.0

cpe:2.3:a:langfuse:langfuse:3.83.0
Langfuse » Langfuse » Version: 3.84.0

cpe:2.3:a:langfuse:langfuse:3.84.0
Langfuse » Langfuse » Version: 3.85.0

cpe:2.3:a:langfuse:langfuse:3.85.0
Langfuse » Langfuse » Version: 3.85.1

cpe:2.3:a:langfuse:langfuse:3.85.1
Langfuse » Langfuse » Version: 3.85.2

cpe:2.3:a:langfuse:langfuse:3.85.2
Langfuse » Langfuse » Version: 3.86.0

cpe:2.3:a:langfuse:langfuse:3.86.0
Langfuse » Langfuse » Version: 3.86.1

cpe:2.3:a:langfuse:langfuse:3.86.1
Langfuse » Langfuse » Version: 3.87.0

cpe:2.3:a:langfuse:langfuse:3.87.0
Langfuse » Langfuse » Version: 3.87.1

cpe:2.3:a:langfuse:langfuse:3.87.1
Langfuse » Langfuse » Version: 3.88.0

cpe:2.3:a:langfuse:langfuse:3.88.0
Langfuse » Langfuse » Version: 3.88.1

cpe:2.3:a:langfuse:langfuse:3.88.1
Langfuse » Langfuse » Version: 3.89.0

cpe:2.3:a:langfuse:langfuse:3.89.0
Langfuse » Langfuse » Version: 3.90.0

cpe:2.3:a:langfuse:langfuse:3.90.0
Langfuse » Langfuse » Version: 3.91.0

cpe:2.3:a:langfuse:langfuse:3.91.0
Langfuse » Langfuse » Version: 3.92.0

cpe:2.3:a:langfuse:langfuse:3.92.0
Langfuse » Langfuse » Version: 3.92.1

cpe:2.3:a:langfuse:langfuse:3.92.1
Langfuse » Langfuse » Version: 3.93.0

cpe:2.3:a:langfuse:langfuse:3.93.0
Langfuse » Langfuse » Version: 3.94.0

cpe:2.3:a:langfuse:langfuse:3.94.0
Langfuse » Langfuse » Version: 3.95.0

cpe:2.3:a:langfuse:langfuse:3.95.0
Langfuse » Langfuse » Version: 3.95.1

cpe:2.3:a:langfuse:langfuse:3.95.1
Langfuse » Langfuse » Version: 3.95.2

cpe:2.3:a:langfuse:langfuse:3.95.2
Langfuse » Langfuse » Version: 3.96.0

cpe:2.3:a:langfuse:langfuse:3.96.0
Langfuse » Langfuse » Version: 3.96.1

cpe:2.3:a:langfuse:langfuse:3.96.1
Langfuse » Langfuse » Version: 3.96.2

cpe:2.3:a:langfuse:langfuse:3.96.2
Langfuse » Langfuse » Version: 3.97.0

cpe:2.3:a:langfuse:langfuse:3.97.0
Langfuse » Langfuse » Version: 3.97.1

cpe:2.3:a:langfuse:langfuse:3.97.1
Langfuse » Langfuse » Version: 3.97.2

cpe:2.3:a:langfuse:langfuse:3.97.2
Langfuse » Langfuse » Version: 3.97.3

cpe:2.3:a:langfuse:langfuse:3.97.3
Langfuse » Langfuse » Version: 3.97.4

cpe:2.3:a:langfuse:langfuse:3.97.4
Langfuse » Langfuse » Version: 3.97.5

cpe:2.3:a:langfuse:langfuse:3.97.5
Langfuse » Langfuse » Version: 3.98.0

cpe:2.3:a:langfuse:langfuse:3.98.0
Langfuse » Langfuse » Version: 3.98.1

cpe:2.3:a:langfuse:langfuse:3.98.1
Langfuse » Langfuse » Version: 3.98.2

cpe:2.3:a:langfuse:langfuse:3.98.2
Langfuse » Langfuse » Version: 3.99.0

cpe:2.3:a:langfuse:langfuse:3.99.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-65107

Products

Pricing

Contact Us