Teleport on Friday warned of a critical-severity vulnerability in the open source platform that can be exploited remotely to bypass standard authentication controls.
Teleport provides connectivity, authentication, and access control for servers and cloud applications. It supports protocols such as SSH, RDP, and HTTPS, and can be used with Kubernetes and various databases.
Tracked as CVE-2025-49825 (CVSS score of 9.8), the critical flaw can be exploited to circumvent SSH authentication, allowing attackers to access Teleport-managed systems.
The issue impacts Teleport Community Edition versions up to 17.5.1 and was addressed with the release of Teleport versions 17.5.2, 16.5.12, 15.5.3, 14.4.1, 13.4.27, and 12.4.35.
Teleport notes that while the fixes were automatically applied for its cloud customers, self-hosted Teleport agents need to be updated as soon as possible. Teleport agents that have been automatically locked because they were running vulnerable software versions need to be updated.
“All nodes need to be upgraded to the patched version of Teleport that matches the major version of your cluster,” Teleport announced.
Agents running in Kubernetes should be configured with the teleport-kube-agent updater, and not teleport-update, Teleport said.
According to Fortinet, the vulnerability impacts all systems running Teleport SSH agents, OpenSSH-integrated deployments, and Teleport Git proxy setups.
“Currently, there is no public proof-of-concept exploit available, nor any evidence indicating that this vulnerability has been exploited in the wild,” Fortinet says.
Related: High-Severity Vulnerabilities Patched by Cisco, Atlassian
Related: Critical Vulnerability Patched in Citrix NetScaler
Related: Code Execution Vulnerabilities Patched in Veeam, BeyondTrust Products
