CNNVD-202508-3028 Information

CNNVD ID

CNNVD-202508-3028

Related CVE

CVE-2025-35114

• CNNVD Published: 2025-08-26

Description (Chinese)

Agiloft是美国Agiloft公司的一个合同管理平台。 Agiloft Release 28版本存在安全漏洞，该漏洞源于多个账户使用默认凭据，可能导致本地权限提升。

Description (English)

Agiloft is a contract management platform for Agiloft in the United States. There is a security loophole in the 28th version of Agiloft Release, which stems from the use of default certificates for multiple accounts, which may lead to an increase in local privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Agiloft

Published

2025-08-26

Last Modified

2026-02-24

References

https://www.cve.org/CVERecord?id=CVE-2025-35114 https://wiki.agiloft.com/display/HELP/What%27s+New%3A+CVE+Resolution https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-239-01.json https://nvd.nist.gov/vuln/detail/CVE-2025-35114