MinIO Security Update Advisory (CVE-2025-62506)

Nov 26 2025

Overview

We have released a security update to address a vulnerability in MinIO. Affected product users are advised to update to the latest version.

Affected Products

CVE-2025-62506

MinIO versions: RELEASE.2025-10-15T17-29-55Z 미만

Resolved Vulnerabilities

Session policy bypass-based privilege escalation vulnerability in Service Account and STS in MinIO (CVE-2025-62506)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-62506

MinIO version: RELEASE.2025-10-15T17-29-55Z

References

[1] Privilege Escalation via Session Policy Bypass in Service Accounts and STS
https://github.com/minio/minio/security/advisories/GHSA-jjjj-jwhf-8rgr

MinIO Security Update Advisory (CVE-2025-62506)

Microsoft Edge browser (142.0.3595.90) version security update advisory

Squid Security Update Advisory (CVE-2025-62168)

Tags:

Microsoft Edge browser (142.0.3595.90) version security update advisory

Squid Security Update Advisory (CVE-2025-62168)