CVE-2025-8662

CVSS 2.3 LOWEPSS 0.3%CWE-20

OpenAM (OpenAM Consortium Edition) contains a vulnerability that may cause it to malfunction as a SAML IdP due to a tampered request.This issue affects OpenAM: from 14.0.0 through 14.0.1.

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

Produtos afetados

OpenAM consortium · OpenAM

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://openam-jp.github.io/Advisories/CVE-2025-8662/