CVE 9.8 CRITICAL

Securden Unified PAM Authentication Bypass_CVE-2025-53118

August 25, 2025 invoker category_cve
9.8 / 10
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup functions, leading to compromise of passwords, secrets, and application session tokens stored by the Unified PAM.

Basic Information

ID CVE-2025-53118
Source rapid7
Published Aug 25, 2025 at 16:06

Affected Product

Vendor Securden
Product Unified PAM
Version 9.0.*
Affected Versions Securden Unified PAM 9.0.*

CWE Classification

CWE-306

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.