216.73.217.22

CVE-2025-54088

· Published 02/10/2025 21:16 · Modified 02/10/2025 21:16

Labels: CVE-2025-54088 2025-10-02CVE-2025-54088[email protected]

Essential information

Published
02/10/2025 21:16
Modified
02/10/2025 21:16
Author
Creator
CVSS
5.5 MEDIUM (v3) 5.5 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

CVE-2025-54088 is an open-redirect vulnerability in Secure Access prior to version 14.10. Attackers with access to the console can redirect victims to an arbitrary URL. The attack complexity is low, attack requirements are present, no privileges are required, and users must actively participate in the attack. Impact to confidentiality is low and there is no impact to integrity or availability. There are high severity impacts to confidentiality, integrity, availability in subsequent systems.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
netmotionsoftware / secure access cpe:2.3:a:netmotionsoftware:secure_access:<14.10:*:*:*:*:*:*:*

References