CNNVD-202507-2901 Information

Jul 22, 2025 cve

CNNVD ID

CNNVD-202507-2901

CVE-2025-7371

CNNVD Published: 2025-07-22

Description (Chinese)

Okta On-Premises Provisioning Agent是美国Okta公司的一个在本地环境中实现Otka用户帐户的自动化创建、更新和删除的软件。 Okta On-Premises Provisioning Agent 2.3.0及之前版本存在日志信息泄露漏洞，该漏洞源于密码重置期间记录用户数据，可能导致个人信息和临时密码泄露。

Description (English)

Okta On-Premises Provision Agent is a software that automates the creation, updating and removal of Otka user accounts in the local environment of Okta, United States. Okta On-Premises Provising Agent 2.3.0 and previous versions have leaks of log information, which stem from recording user data during password replacement and may lead to personal information and temporary password leaks.

Hazard Level

High

Vulnerability Type

日志信息泄露

Published

2025-07-22

Last Modified

2026-02-24

References

https://help.okta.com/oie/en-us/content/topics/settings/version_histories/ver_history_opp_agent.htm https://nvd.nist.gov/vuln/detail/CVE-2025-7371

Patch

https://help.okta.com/oie/en-us/content/topics/settings/version_histories/ver_history_opp_agent.htm

Share on: