CNNVD-202511-1400 Information

Nov 12, 2025 cve

CNNVD ID

CNNVD-202511-1400

CVE-2025-25236

CNNVD Published: 2025-11-12

Description (Chinese)

Omnissa Workspace ONE UEM是美国Omnissa公司的一款端点管理平台。 Omnissa Workspace ONE UEM存在安全漏洞，该漏洞源于可观察的响应差异，可能导致恶意行为者枚举敏感信息如租户ID和用户账户。

Description (English)

Omnissa Workspace ONE UEM is an end-point management platform for the United States company Omnissa. There is a security loophole in Omnissa Workspace ONE UEM, which stems from observed differences in response, which may lead to malicious actors listing sensitive information such as tenant ID and user accounts.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Omnissa

Published

2025-11-12

Last Modified

2026-02-24

References

https://www.omnissa.com/omnissa-security-response/ https://static.omnissa.com/sites/default/files/OMSA-2025-0005.pdf https://access.redhat.com/security/cve/cve-2025-25236

Patch

https://www.omnissa.com/omsa-2025-0005/

Share on: