How severe is CVE-2025-25234?

CVE-2025-25234 has a CVSS v3 score of 7.1 (HIGH).

CVE-2025-25234

Name: unified_access_gateway
Author: omnissa

7.1HIGH

Omnissa UAG contains a Cross-Origin Resource Sharing (CORS) bypass vulnerability. A malicious actor with network access to UAG may be able to bypass administrator-configured CORS restrictions to gain

Опубликовано: 4/17/2025Обновлено: 4/21/2025

Описание

Omnissa UAG contains a Cross-Origin Resource Sharing (CORS) bypass vulnerability. A malicious actor with network access to UAG may be able to bypass administrator-configured CORS restrictions to gain access to sensitive networks.

ИИ-АнализНа базе ИИ

Затронутые продукты

omnissaunified_access_gateway

Ссылки

https://static.omnissa.com/sites/default/files/OMSA-2025-0002.pdf
Vendor Advisory
https://www.omnissa.com/omnissa-security-response/
Vendor Advisory