CNNVD-202507-104 Information
CNNVD ID
CNNVD-202507-104
Related CVE
- CNNVD Published: 2025-07-02
Description (Chinese)
One Identity OneLogin Active Directory Connector是美国One Identity公司的一个连接器软件。 One Identity OneLogin Active Directory Connector 6.1.5之前版本存在安全漏洞,该漏洞源于DirectoryToken加密处理不当。
Description (English)
One Identity OneLogin Active Directory Contractor is a connection software for One Identity in the United States. One security loophole, which originated from the inappropriate encryption of Directory Token, existed before version 6.1.5.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Oneflow
Published
2025-07-02
Last Modified
2026-02-24
References
https://oneidentity.com https://onelogin.service-now.com/support?id=kb_article&sys_id=b69c9c6c8762e210f7b8a7dd3fbb356e&kb_category=f91821b0db185340d5505eea4b9619f9 https://access.redhat.com/security/cve/cve-2025-52925
Patch
https://onelogin.service-now.com/support?id=kb_category&kb_category=f91821b0db185340d5505eea4b9619f9
Share on: