CVE-2025-8325 — The software fails to enforce role-based access controls for certain Gateway API invocations. Users with the 'Internal/Everyone' role can invoke these APIs, bypassing intended permission checks. This — CVE Database · The Intelligence Room