CVE-2025-26818

Critical CVSS: 9.8

Netwrix Password Secure through 9.2 allows command injection.

Vendor

Product

CWE

Yayın Tarihi

2025-04-03 20:15:23

Güncelleme

2025-04-08 20:10:49

Source Identifier

cve@mitre.org

KEV Date Added

CWE-94 Password Secure CRITICAL Netwrix 2025

https://helpcenter.netwrix.com/bundle/PasswordSecure_9.2_ReleaseNotes/resource/Netwrix_PasswordSecure_9.2_BugFixList.pdf https://security.netwrix.com/advisories/adv-2025-009

Medium

CVE-2025-54397

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 inserts Sensitive Information Into Se…

Medium

CVE-2025-54392

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error d…

Medium

CVE-2025-54393

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows Static Code Injection. Authent…

Medium

CVE-2025-54394

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 has Insufficiently Protected Credenti…

Medium

CVE-2025-54395

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows XSS for authentication configu…

Medium

CVE-2025-54396

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows SQL Injection. Authenticated u…