CNNVD-202507-2077 Information

CNNVD ID

CNNVD-202507-2077

Related CVE

CVE-2025-49831

• CNNVD Published: 2025-07-15

Description (Chinese)

CyberArk Conjur是CyberArk开源的一个密钥管理软件。 CyberArk Conjur存在授权问题漏洞，该漏洞源于认证请求重定向，可能导致权限提升。

Description (English)

CyberArk Conjur is a key management software for the CyberArk open source. CyberArk Conjur had a mandate gap, which stemmed from a re-direction of the authentication request and could lead to an increase in privileges.

Hazard Level

Low

Vulnerability Type

授权问题

Affected Vendor

CyberArk

Published

2025-07-15

Last Modified

2026-02-24

References

https://github.com/cyberark/conjur/security/advisories/GHSA-952q-mjrf-wp5j https://github.com/cyberark/conjur/releases/tag/v1.22.1 https://nvd.nist.gov/vuln/detail/CVE-2025-49831

Patch

https://github.com/cyberark/conjur/releases