← Back

CVE-2025-54982

nvd nist
Published: Aug 5, 2025Modified: Aug 5, 2025

JSON object

Loading...
9.6
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
Exploitability: 3.1 / Impact: 5.8
Source: cve@zscaler.com (Secondary)

Description

An improper verification of cryptographic signature in Zscaler's SAML authentication mechanism on the server-side allowed an authentication abuse.

Related CWEs

CWE-347
Improper Verification of Cryptographic Signature
The product does not verify, or incorrectly verifies, the cryptographic signature for data.

References (1)

Source: cve@zscaler.com

Timeline

No history available yet.