CVE-2025-62820

Alias:

Overview

Slack Nebula before 1.9.7 mishandles CIDR in some configurations and thus accepts arbitrary source IP addresses within the Nebula network.

Critical

Low

Medium

No items found.

Severity / CVSS Score: (Critical)

CWE:

Discovery date: October 23, 2025

Authentication required: NoneYes

Attack Vector: None