CVE-2025-48749

CRITICAL

Netwrix Directory Manager <11.1.25134.03 - Info Disclosure

Title source: llm
STIX 2.1

Description

Netwrix Directory Manager (formerly Imanami GroupID) v11.0.0.0 and before & after v.11.1.25134.03 inserts Sensitive Information into Sent Data.

References (2)

Scores

CVSS v3 9.1
EPSS 0.0041
EPSS Percentile 61.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-201
Status published
Products (1)
netwrix/directory_manager 11.0.0.0 - 11.1.25134.03
Published May 28, 2025
Tracked Since Feb 18, 2026