CVE-2025-49653: BackendAI vulnerable to Exposure of Sensitive Information to an Unauthorized Actor

June 9, 2025 (updated January 21, 2026)

Exposure of sensitive data in active sessions in Lablup’s BackendAI allows attackers to retrieve credentials for users on the management platform.

NOTE: The maintainers of BackendAI do not consider this report to fit with their threat model and advise users to follow security advice from https://github.com/lablup/backend.ai/pull/7587 in their instances to protect themselves from the conditions that would lead to the situation described in the CVE record.

References

github.com/advisories/GHSA-hxvr-gg2w-j48x
github.com/lablup/backend.ai
github.com/lablup/backend.ai/pull/7587
hiddenlayer.com/sai_security_advisor/2025-05-backendai-49653
hiddenlayer.com/sai_security_advisor/2025-06-backendai
nvd.nist.gov/vuln/detail/CVE-2025-49653

Code Behaviors & Features

Detect and mitigate CVE-2025-49653 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →