exploitDog

CVE-2025-6737

Опубликовано: 25 авг. 2025

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.

Ссылки

https://www.rapid7.com/blog/post/securden-unified-pam-multiple-critical-vulnerabilities-fixed/

EPSS

Процентиль: 14%

0.00046

Низкий

7.2 High

CVSS3

Дефекты

CWE-1391

Связанные уязвимости

CVE-2025-6737

redhat

4 месяца назад

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.

GHSA-j677-558j-pgrq

CVSS3: 7.2

github

4 месяца назад

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.

EPSS

Процентиль: 14%

0.00046

Низкий

7.2 High

CVSS3

Дефекты

CWE-1391