216.73.216.75

CVE-2025-13532

· Published 16/12/2025 20:15 · Modified 18/12/2025 15:08

Labels: CVE-2025-13532 2025-12-16CVE-2025-13532df4dee71-de3a-4139-9588-11b62fe6c0ff

Essential information

Published
16/12/2025 20:15
Modified
18/12/2025 15:08
Author
Creator
CVSS
6.2 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS metrics

Description

Insecure defaults in the Server Agent component of Fortra's Core Privileged Access Manager (BoKS) can result in the selection of weak password hash algorithms.  This issue affects BoKS Server Agent 9.0 instances that support yescrypt and are running in a BoKS 8.1 domain.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
df4dee71-de3a-4139-9588-11b62fe6c0ff
NVD
View on NVD

References