How severe is CVE-2025-35114?

CVE-2025-35114 has a CVSS v3 score of 7.5 (HIGH).

CVE-2025-35114

Name: agiloft
Author: atlassian

7.5HIGH

Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could

Publicado: 8/26/2025Actualizado: 9/2/2025

Descripción

Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could be cracked offline. Users should upgrade to Agiloft Release 30.

Análisis IAImpulsado por IA

Productos Afectados

atlassianagiloft

Referencias

https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-239-01.json
Third Party Advisory
https://wiki.agiloft.com/display/HELP/What%27s+New%3A+CVE+Resolution
Release NotesVendor Advisory
https://www.cve.org/CVERecord?id=CVE-2025-35114
Third Party Advisory