CVE-2025-67288 and v13?

pCarsten · December 27, 2025, 4:15pm

Hello,

We’ve received a dependabot warning on CVE-2025-67288. The CVE mentions “<= v16.3.3”

I’m trying to understand to what degree this CVE affects v13 installations. If it does, can we expect an update to v13 as this is still in security phase?

Thank you for any advice.

Luuk · December 28, 2025, 10:27am

That CVE is still work in progress. Because v14+ features a completely new backoffice, it isn’t certain that v13 would be affected.