CRITICAL🇵🇱 Wersja polska

CVE-2025-1044

CVSS 9.8v3.1pub. 2025-02-11upd. 2025-02-18

Logsign Unified SecOps Platform Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web service, which listens on TCP port 443 by default. The issue results from the lack of proper implementation of the authentication algorithm. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-25336.

🤖 AI Analysis
How it works

The vulnerability exists in a web service listening on TCP port 443 by default. The problem stems from improper implementation of an authentication algorithm, which allows it to be completely bypassed. An attacker remotely, without authentication and without user interaction, can directly access protected resources of the web service, bypassing access control mechanisms.

Impact

An attacker can gain full, unauthorized access to the Logsign Unified SecOps Platform, potentially leading to breach of confidentiality, integrity, and availability of the system and data processed by it.

Mitigation & patch

Update Logsign Unified SecOps Platform to version 6.4.32 or later according to the manufacturer's Release Notes available at https://support.logsign.net/hc/en-us/articles/22076844908946-18-10-2024-Version-6-4-32-Release-Notes

Who is affected

Logsign Unified SecOps Platform — versions indicated in manufacturer references (patch available in version 6.4.32 or later according to manufacturer's Release Notes)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Logsign Unified Secops Platform

    APP
    Logsign
    < 6.4.32
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2024-5716CRITICAL9.8PL ✓ten sam produkt

Pominięcie uwierzytelnienia w Logsign Unified SecOps Platform (reset hasła)

CVE-2024-5718HIGH8.1ten sam produkt

Logsign Unified SecOps Platform Missing Authentication Remote Code Execution Vulnerability. This vulnerability...

CVE-2024-5719HIGH8.8ten sam produkt

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This vulnerability allo...

CVE-2024-5720HIGH8.8ten sam produkt

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This vulnerability allo...

CVE-2024-5717HIGH8.8ten sam produkt

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This vulnerability allo...