CriticalPublic exploit

Privilege Escalation in RBI Assistant Platform createToken GraphQL Mutation

IdentifiersCVE-2025-62645CWE-266· Incorrect Privilege Assignment

CVE-2025-62645 is a critical privilege-escalation vulnerability in Restaurant Brands International's assistant platform affecting Burger King, Tim Hortons, and Popeyes deployments through 2025-09-06. According to the provided content, the core flaw is that the GraphQL createToken mutation lacked authorization checks, allowing a remote authenticated user to request and obtain an administrative token for the entire platform. The reported attack path was facilitated by additional security weaknesses: publicly accessible AWS Cognito registration, an alternate registration flow that bypassed email verification, and enabled GraphQL introspection in production that exposed the API schema and sensitive operations such as createToken. The content also notes broader credential-management issues, including hardcoded passwords in HTML and default 'admin' credentials on drive-thru tablets, though the specific CVE description centers on the createToken mutation and administrative token issuance.

For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial

ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation allows an attacker to escalate from a low-privilege authenticated account to administrative access across the RBI assistant platform. Based on the provided content, this could expose or enable control over systems spanning more than 30,000 restaurant locations, including access to employee data, drive-thru audio, store-management functions, and equipment-ordering capabilities. Because the issued token allegedly granted unrestricted cross-platform administrative privileges, the vulnerability could enable broad compromise of operational systems and sensitive business data across multiple RBI brands.

Mitigation

If you can’t patch tonight, do this now.

If immediate code remediation is not possible, restrict access to the assistant platform to trusted networks and identities, disable or gate self-service account creation, require strong identity verification before account activation, and block access to administrative token-generation functionality at the API gateway or resolver layer except for explicitly authorized roles. Disable GraphQL introspection in production, monitor for anomalous createToken invocation attempts, review logs for unauthorized token issuance, and revoke any tokens that may have been generated through abuse. As an additional defensive measure, rotate exposed credentials, eliminate default passwords on managed devices, and enforce MFA and least-privilege controls for all administrative accounts.

Remediation

Patch, then assume compromise.

The vulnerable createToken GraphQL mutation should enforce strict server-side authorization checks so that only appropriately privileged principals can mint elevated tokens. Public self-registration in AWS Cognito should be disabled unless explicitly required, and any registration flow must enforce verified email ownership before credential issuance or account activation. GraphQL introspection should be disabled or tightly restricted in production environments where not operationally necessary. Any hardcoded credentials and default passwords referenced in the content should be removed and rotated immediately. The provided content states that RBI remediated the issue within one day of disclosure; affected deployments should ensure they are running the remediated configuration and that all previously issued sensitive tokens and credentials have been invalidated and reissued as needed.

PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType

RbiRestaurant Brands International Assistantapplication

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

2 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

2 SOURCESView more in app

zeropath blogNews

Oct 17, 2025

CVE-2025-62645: Privilege Escalation in Restaurant Brands International Assistant Platform (Brief Summary) - ZeroPath Blog | ZeroPath

A critical privilege escalation vulnerability in Restaurant Brands International's assistant platform caused by authentication and authorization failures, including an exposed GraphQL createToken mutation that allowed any authenticated user to obtain an administrative token.

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.

Start free trial

Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity1