CVE-2025-25236

Medium CVSS: 5.3

Omnissa Workspace ONE UEM contains an observable response discrepancy vulnerability. A malicious actor may be able to enumerate sensitive information such as tenant ID and user accounts that could facilitate brute-force, password-spraying or credential-stuffing attacks.

Vendor

Product

CWE

CWE-204

Yayın Tarihi

2025-11-12 18:15:35

Güncelleme

2025-11-14 16:42:30

Source Identifier

de5a6978-88fe-4c27-a7df-d0d5b52d5b52

KEV Date Added

Kategoriler

CWE-204 MEDIUM 2025

Referanslar

https://static.omnissa.com/sites/default/files/OMSA-2025-0005.pdf https://www.omnissa.com/omnissa-security-response/