CNNVD-202507-2069 Information

CNNVD ID

CNNVD-202507-2069

Related CVE

CVE-2025-49827

• CNNVD Published: 2025-07-15

Description (Chinese)

CyberArk Conjur是CyberArk开源的一个密钥管理软件。 CyberArk Conjur存在安全漏洞，该漏洞源于IAM认证器绕过，可能导致权限提升。

Description (English)

CyberArk Conjur is a key management software for the CyberArk open source. CyberArk Conjur has a security loophole, which stems from the circumvention of the IAM certifier, which may lead to an increase in privileges.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

CyberArk

Published

2025-07-15

Last Modified

2026-02-24

References

https://github.com/cyberark/conjur/security/advisories/GHSA-gmc5-9mpc-xg75 https://github.com/cyberark/conjur/releases/tag/v1.22.1 https://nvd.nist.gov/vuln/detail/CVE-2025-49827

Patch

https://github.com/cyberark/conjur/releases