exploitDog

CVE-2025-6737

Опубликовано: 25 авг. 2025

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.

Ссылки

https://www.rapid7.com/blog/post/securden-unified-pam-multiple-critical-vulnerabilities-fixed/

EPSS

Процентиль: 12%

0.00041

Низкий

7.2 High

CVSS3

Дефекты

CWE-1391

Связанные уязвимости

CVE-2025-6737

redhat

6 месяцев назад

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.

GHSA-j677-558j-pgrq

CVSS3: 7.2

github

6 месяцев назад

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.

EPSS

Процентиль: 12%

0.00041

Низкий

7.2 High

CVSS3

Дефекты

CWE-1391