CVE-2025-49831

CRITICAL

CyberArk Conjur OSS < 1.22.1 & Secrets Manager Self-Hosted < 13.5.1 - Improper Authentication

Title source: llm

Description

An attacker of Secrets Manager, Self-Hosted installations that route traffic from Secrets Manager to AWS through a misconfigured network device can reroute authentication requests to a malicious server under the attacker’s control. CyberArk believes there to be very few installations where this issue can be actively exploited, though Secrets Manager, Self-Hosted (formerly Conjur Enterprise) prior to versions 13.5.1 and 13.6.1 and Conjur OSS prior to version 1.22.1 may be affected. Conjur OSS version 1.22.1 and Secrets Manager, Self-Hosted versions 13.5.1 and 13.6.1 fix the issue.

References (4)

Core 4

Core References

Vendor Advisory x_refsource_confirm

https://github.com/cyberark/conjur/security/advisories/GHSA-952q-mjrf-wp5j

Release Notes x_refsource_misc

https://github.com/cyberark/conjur/releases/tag/v1.22.1

Mailing List

http://www.openwall.com/lists/oss-security/2025/07/16/7

Mailing List

http://www.openwall.com/lists/oss-security/2025/08/08/1

Scores

CVSS v3 9.8

EPSS 0.0117

EPSS Percentile 63.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-287

Status published

Products (3)

cyberark/conjur 13.6

cyberark/conjur < 1.22.1

cyberark/conjur < 13.5.1

Published Jul 15, 2025

Tracked Since Feb 18, 2026