CNNVD-202507-1873 Information

CNNVD ID

CNNVD-202507-1873

Related CVE

CVE-2025-27582

• CNNVD Published: 2025-07-14

Description (Chinese)

One Identity Password Manager是美国One Identity公司的一个用于提供身份验证的Web平台。 One Identity Password Manager 5.14.4之前版本存在安全漏洞，该漏洞源于Secure Password扩展中安全加固机制缺陷，可能导致本地权限提升。

Description (English)

One Identity Password Manager is a Web platform used by One Identity in the United States to provide authentication. One Security Password Manager 5.14.4 has a security loophole, which stems from the security enhancements in the Secure Password extension, which may lead to an increase in local authority.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Oneflow

Published

2025-07-14

Last Modified

2026-02-24

References

https://www.cyberis.com/article/password-manager-privilege-escalation https://access.redhat.com/security/cve/cve-2025-27582