CVE-2025-25229_CVE-2025-25229

5.4 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Description

Omnissa Workspace ONE UEM contains a Server-Side Request Forgery (SSRF) Vulnerability. A malicious actor with user privileges may be able to access restricted internal system information, potentially enabling enumeration of internal network resources.

Basic Information

ID CVE-2025-25229

Source Omnissa

Published Aug 11, 2025 at 18:24

Modified Aug 11, 2025 at 18:41

Affected Product

Vendor Omnissa

Product Omnissa Workspace ONE UEM

Version Omnissa Workspace ONE UEM version 24.10.0.10 or earlier

Affected Versions Omnissa Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 24.10.0.10 or earlier
Omnissa Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 24.6.0.34 or earlier
Omnissa Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 24.2.0.29 or earlier
Omnissa Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 23.10.0.49 or earlier

CWE Classification

CWE-918

References

{
    "lastseen": "",
    "description": "Omnissa Workspace ONE UEM contains a Server-Side Request Forgery (SSRF) Vulnerability.\u00a0A malicious actor with user privileges may be able to access restricted internal system information, potentially enabling enumeration of internal network resources.",
    "published": "2025-08-11T18:24:17.625Z",
    "modified": "2025-08-11T18:41:08.281Z",
    "type": "cve",
    "title": "CVE-2025-25229",
    "source": "Omnissa",
    "references": "https://www.omnissa.com/omsa-2025-0004/\nhttps://www.omnissa.com/omnissa-security-response/",
    "id": "CVE-2025-25229",
    "bulletinFamily": "",
    "cwe": [
        "CWE-918"
    ],
    "cvelist": null,
    "sourceData": "Omnissa Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 24.10.0.10 or earlier\nOmnissa Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 24.6.0.34 or earlier\nOmnissa Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 24.2.0.29 or earlier\nOmnissa Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 23.10.0.49 or earlier",
    "sourceHref": "",
    "cvss": {
        "score": 5.4,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Omnissa Workspace ONE UEM",
    "version": "Omnissa Workspace ONE UEM version 24.10.0.10 or earlier",
    "vendor": "Omnissa",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}