CNNVD-202508-2935 Information

CNNVD ID

CNNVD-202508-2935

Related CVE

CVE-2025-53120

• CNNVD Published: 2025-08-25

Description (Chinese)

Securden Unified PAM是美国Securden公司的一个特权访问管理软件。 Securden Unified PAM存在安全漏洞，该漏洞源于未经验证的文件上传功能存在路径遍历，可能导致远程代码执行。

Description (English)

Securden Unified PAS is a privileged access management software for the United States company Securden. There is a security loophole in Securden Unified PAM, which stems from the unverified file upload function ’ s path history, which may lead to remote code execution.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Securden

Published

2025-08-25

Last Modified

2026-02-24

References

https://www.rapid7.com/blog/post/securden-unified-pam-multiple-critical-vulnerabilities-fixed/ https://nvd.nist.gov/vuln/detail/CVE-2025-53120 https://access.redhat.com/security/cve/cve-2025-53120

Patch

https://www.securden.com/privileged-account-manager/view-demo-video.html