CNNVD-202509-211 Information
Sep 02, 2025
cve
CNNVD ID
CNNVD-202509-211
Related CVE
- CNNVD Published: 2025-09-02
Description (Chinese)
OpenAM是OpenAM Consortium组织的一种一体化访问管理解决方案。提供身份验证、授权、授权和联合功能。 OpenAM 14.0.0至14.0.1版本存在安全漏洞,该漏洞源于篡改请求可能导致SAML IdP功能异常。
Description (English)
OpenAM is an integrated access management solution for OpenAM Consortium. Provide identification, authorization, authorization and joint functions. OpenAM 14.0.0 to 14.0.1 has a security loophole, which arises out of tampering requests that could lead to an anomaly in the SAML IdP function.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
OpenAM Consortium
Published
2025-09-02
Last Modified
2026-02-24
References
https://openam-jp.github.io/Advisories/CVE-2025-8662/ https://access.redhat.com/security/cve/cve-2025-8662 https://nvd.nist.gov/vuln/detail/CVE-2025-8662
Patch
https://github.com/openam-jp/openam/releases
Share on: