CVE-2025-13532

Medium CVSS: 6.2

Insecure defaults in the Server Agent component of Fortra's Core Privileged Access Manager (BoKS) can result in the selection of weak password hash algorithms. This issue affects BoKS Server Agent 9.0 instances that support yescrypt and are running in a BoKS 8.1 domain.

Vendor

Product

CWE

CWE-916

Yayın Tarihi

2025-12-16 20:15:47

Güncelleme

2025-12-18 15:08:06

Source Identifier

df4dee71-de3a-4139-9588-11b62fe6c0ff

KEV Date Added

Kategoriler

CWE-916 MEDIUM 2025

Referanslar

https://www.fortra.com/security/advisories/product-security/fi-2025-014