cnvd - cnvd-2025-28681

CNVD-2025-28681

Vulnerability from cnvd - Published: 2025-11-19

Title

Ivanti Secure Access Client开放重定向漏洞

Description

Ivanti Secure Access Client是Ivanti公司开发的一款安全软件客户端，主要用于实现远程安全访问，支持企业级VPN连接和资源加密访问。 Ivanti Secure Access Client存在开放重定向漏洞，该漏洞源于攻击者可通过控制台重定向受害者至任意URL，目前没有详细的漏洞细节提供。

Severity

中

Patch Name

Ivanti Secure Access Client开放重定向漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级程序修复该安全问题，详情见厂商官网: https://www.ivanti.com/company/history/pulse-secure?psredirect

Reference

https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-54088

Impacted products

Name
Ivanti Ivanti Secure Access Client <14.10

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2025-54088",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2025-54088"
    }
  },
  "description": "Ivanti Secure Access Client\u662fIvanti\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3e\u5b89\u5168\u8f6f\u4ef6\u5ba2\u6237\u7aef\uff0c\u4e3b\u8981\u7528\u4e8e\u5b9e\u73b0\u8fdc\u7a0b\u5b89\u5168\u8bbf\u95ee\uff0c\u652f\u6301\u4f01\u4e1a\u7ea7VPN\u8fde\u63a5\u548c\u8d44\u6e90\u52a0\u5bc6\u8bbf\u95ee\u3002\n\nIvanti Secure Access Client\u5b58\u5728\u5f00\u653e\u91cd\u5b9a\u5411\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u63a7\u5236\u53f0\u91cd\u5b9a\u5411\u53d7\u5bb3\u8005\u81f3\u4efb\u610fURL\uff0c\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u7a0b\u5e8f\u4fee\u590d\u8be5\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u89c1\u5382\u5546\u5b98\u7f51:\r\nhttps://www.ivanti.com/company/history/pulse-secure?psredirect",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-28681",
  "openTime": "2025-11-19",
  "patchDescription": "Ivanti Secure Access Client\u662fIvanti\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3e\u5b89\u5168\u8f6f\u4ef6\u5ba2\u6237\u7aef\uff0c\u4e3b\u8981\u7528\u4e8e\u5b9e\u73b0\u8fdc\u7a0b\u5b89\u5168\u8bbf\u95ee\uff0c\u652f\u6301\u4f01\u4e1a\u7ea7VPN\u8fde\u63a5\u548c\u8d44\u6e90\u52a0\u5bc6\u8bbf\u95ee\u3002\r\n\r\nIvanti Secure Access Client\u5b58\u5728\u5f00\u653e\u91cd\u5b9a\u5411\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u63a7\u5236\u53f0\u91cd\u5b9a\u5411\u53d7\u5bb3\u8005\u81f3\u4efb\u610fURL\uff0c\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Ivanti Secure Access Client\u5f00\u653e\u91cd\u5b9a\u5411\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Ivanti Ivanti Secure Access Client \u003c14.10"
  },
  "referenceLink": "https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-54088",
  "serverity": "\u4e2d",
  "submitTime": "2025-10-21",
  "title": "Ivanti Secure Access Client\u5f00\u653e\u91cd\u5b9a\u5411\u6f0f\u6d1e"
}

CVE-2025-54088 (GCVE-0-2025-54088)

Vulnerability from cvelistv5 – Published: 2025-10-02 20:10 – Updated: 2025-10-07 19:26

Summary

CVE-2025-54088 is an open-redirect vulnerability in Secure Access prior to version 14.10. Attackers with access to the console can redirect victims to an arbitrary URL. The attack complexity is low, attack requirements are present, no privileges are required, and users must actively participate in the attack. Impact to confidentiality is low and there is no impact to integrity or availability. There are high severity impacts to confidentiality, integrity, availability in subsequent systems.

Severity ?

5.5 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H

CWE

CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')

Assigner

Absolute

References

URL

Tags

https://www.absolute.com/platform/security-inform…

Impacted products

	Vendor	Product	Version
	Absolute Security	Secure Access	Affected: 0 , < <14.10 (server)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-54088",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-07T19:26:12.951361Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-601",
                "description": "CWE-601 URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-07T19:26:28.230Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Secure Access",
          "vendor": "Absolute Security",
          "versions": [
            {
              "lessThan": "\u003c14.10",
              "status": "affected",
              "version": "0",
              "versionType": "server"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eCVE-2025-54088 is an open-redirect vulnerability in Secure\nAccess prior to version 14.10. Attackers with access to the console can\nredirect victims to an arbitrary URL. The attack complexity is low, attack\nrequirements are present, no privileges are required, and users must actively\nparticipate in the attack. Impact to confidentiality is low and there is no\nimpact to integrity or availability. There are high severity impacts to\nconfidentiality, integrity, availability in subsequent systems.\u003c/p\u003e"
            }
          ],
          "value": "CVE-2025-54088 is an open-redirect vulnerability in Secure\nAccess prior to version 14.10. Attackers with access to the console can\nredirect victims to an arbitrary URL. The attack complexity is low, attack\nrequirements are present, no privileges are required, and users must actively\nparticipate in the attack. Impact to confidentiality is low and there is no\nimpact to integrity or availability. There are high severity impacts to\nconfidentiality, integrity, availability in subsequent systems."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "NETWORK",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "NONE",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "ACTIVE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "NONE",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-10-02T20:10:52.425Z",
        "orgId": "b6533044-ea05-4482-8458-7bddeca0d079",
        "shortName": "Absolute"
      },
      "references": [
        {
          "url": "https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-54088"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Open Redirect in Secure Access prior to 14.10",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "b6533044-ea05-4482-8458-7bddeca0d079",
    "assignerShortName": "Absolute",
    "cveId": "CVE-2025-54088",
    "datePublished": "2025-10-02T20:10:52.425Z",
    "dateReserved": "2025-07-16T17:10:03.453Z",
    "dateUpdated": "2025-10-07T19:26:28.230Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2025-28681

CVE-2025-54088 (GCVE-0-2025-54088)

Tags

Sightings

Nomenclature