How severe is CVE-2025-35114?

CVE-2025-35114 has a CVSS v3 score of 7.5 (HIGH).

CVE-2025-35114

Name: agiloft
Author: atlassian

7.5HIGH

Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could

Publicado: 8/26/2025Atualizado: 9/2/2025

Descrição

Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation. The password hash is known for at least one of the accounts and the credentials could be cracked offline. Users should upgrade to Agiloft Release 30.

Análise IADesenvolvido por IA

Produtos Afetados

atlassianagiloft

Referências

https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-239-01.json
Third Party Advisory
https://wiki.agiloft.com/display/HELP/What%27s+New%3A+CVE+Resolution
Release NotesVendor Advisory
https://www.cve.org/CVERecord?id=CVE-2025-35114
Third Party Advisory