9 matches found
Securden Unified PAM - Authentication Bypass
An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup functions, leading to compromise of passwords, secrets, and application session tokens stored by the Unified PAM. id: CVE-2025-53118 info: name: Securden Unified PAM -...
VulnCheck KEV: CVE-2025-53118
An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup functions, leading to compromise of passwords, secrets, and application session tokens stored by the Unified PAM...
EUVD-2025-25723
Malicious code in bioql PyPI...
CVE-2025-53120 Securden Unified PAM Path Traversal In File Upload
A path traversal vulnerability in unauthenticated upload functionality allows a malicious actor to upload binaries and scripts to the server’s configuration and web root directories, achieving remote code execution on the Unified PAM server...
Securden Unified PAM: Multiple Critical Vulnerabilities (FIXED)
Overview While performing continuous red teaming exercises through Rapid7’s Vector Command service, Rapid7 discovered a total of four vulnerabilities in Securden Unified PAM. Three vulnerabilities were identified that allow an attacker to bypass authentication and view stored passwords or execute...
Securden Unified PAM 安全漏洞
Securden Unified PAM is a privileged access management software from Securden, Inc. A security vulnerability exists in Securden Unified PAM that stems from unauthenticated file upload functionality with path traversal, which could lead to remote code execution...
Securden Unified PAM 安全漏洞
Securden Unified PAM is a privileged access management software from Securden USA. A security vulnerability exists in Securden Unified PAM that stems from shared infrastructure and access tokens that could lead to low privilege access...
Securden Unified PAM 安全漏洞
Securden Unified PAM is a privileged access management software from Securden, Inc. A security vulnerability exists in Securden Unified PAM that stems from an unauthenticated file upload feature that could lead to malicious file uploads...
PT-2025-34677 · Unknown · Unified Pam
Name of the Vulnerable Software and Affected Versions: Unified PAM server affected versions not specified Description: A path traversal vulnerability exists in the unauthenticated upload functionality. This allows a malicious actor to upload binaries and scripts to the server’s configuration and...