CVE-2025-25231

🗓️ 11 Aug 2025 18:12:49Reported by OmnissaType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 33 Views

CVE-2025-25231: Omnissa Workspace ONE UEM path traversal enables read-only get to restricted data.

Reporter	Title	Published	Views	Family All 14
Circl	CVE-2025-25231	14 Aug 202521:02	–	circl
CNNVD	Omnissa Workspace ONE UEM 安全漏洞	11 Aug 202500:00	–	cnnvd
Cvelist	CVE-2025-25231	11 Aug 202518:12	–	cvelist
EUVD	EUVD-2025-24160	11 Aug 202518:12	–	euvd
GithubExploit	Exploit for CVE-2025-25231	12 Aug 202509:05	–	githubexploit
NCSC	Vulnerabilities fixed in Omnissa Workspace ONE UEM	12 Sep 202515:23	–	ncsc
Nuclei	Omnissa Workspace ONE UEM - Path Traversal	4 Feb 202607:00	–	nuclei
NVD	CVE-2025-25231	11 Aug 202518:15	–	nvd
Tenable Nessus	Omnissa Workspace ONE UEM Multiple Vulnerabilities (OMSA-2025-0004)	26 Sep 202500:00	–	nessus
Packet Storm News	Omnissa Workspace ONE UEM Path Traversal / Server-Side Request Forgery	12 Aug 202500:00	–	packetstormnews

[
  {
    "defaultStatus": "unaffected",
    "product": "Omnissa Workspace ONE UEM",
    "vendor": "Omnissa",
    "versions": [
      {
        "status": "affected",
        "version": "Omnissa Workspace ONE UEM version 24.10.0.10 or earlier"
      },
      {
        "status": "affected",
        "version": "Omnissa Workspace ONE UEM version 24.6.0.34 or earlier"
      },
      {
        "status": "affected",
        "version": "Omnissa Workspace ONE UEM version 24.2.0.29 or earlier"
      },
      {
        "status": "affected",
        "version": "Omnissa Workspace ONE UEM version 23.10.0.49 or earlier"
      }
    ]
  }
]

Source	Link
omnissa	www.omnissa.com/omnissa-security-response/
static	www.static.omnissa.com/sites/default/files/OMSA-2025-0004.pdf

15 Apr 2026 00:35Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.17.5

EPSS0.04239

SSVC