CVE-2025-6737

High CVSS: 7.2

Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.

Vendor

Product

CWE

CWE-1391

Yayın Tarihi

2025-08-25 17:15:30

Güncelleme

2025-08-25 20:24:45

Source Identifier

cve@rapid7.com

KEV Date Added

Kategoriler

CWE-1391 HIGH 2025

Referanslar

https://www.rapid7.com/blog/post/securden-unified-pam-multiple-critical-vulnerabilities-fixed/