How severe is CVE-2025-35114?

CVE-2025-35114 has a CVSS v3 score of 7.5 (HIGH).

CVE-2025-35114

Name: agiloft
Author: atlassian

7.5HIGH

Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could

Published: 8/26/2025Updated: 9/2/2025

Description

Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could be cracked offline. Users should upgrade to Agiloft Release 30.

AI AnalysisPowered by AI

Affected Products

atlassianagiloft

References

https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-239-01.json
Third Party Advisory
https://wiki.agiloft.com/display/HELP/What%27s+New%3A+CVE+Resolution
Release NotesVendor Advisory
https://www.cve.org/CVERecord?id=CVE-2025-35114
Third Party Advisory