CNNVD-202507-2072 Information

CNNVD ID

CNNVD-202507-2072

Related CVE

CVE-2025-49830

• CNNVD Published: 2025-07-15

Description (Chinese)

CyberArk Conjur是CyberArk开源的一个密钥管理软件。 CyberArk Conjur存在安全漏洞，该漏洞源于策略解析器漏洞，可能导致信息泄露。

Description (English)

CyberArk Conjur is a key management software for the CyberArk open source. CyberArk Conjur has a security loophole, which stems from a tactical solver loophole and could lead to a leak of information.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

CyberArk

Published

2025-07-15

Last Modified

2026-02-24

References

https://github.com/cyberark/conjur/security/advisories/GHSA-7m6h-fqrm-m9c5 https://github.com/cyberark/conjur/releases/tag/v1.22.1 https://nvd.nist.gov/vuln/detail/CVE-2025-49830

Patch

https://github.com/cyberark/conjur/releases