CVE-2025-54882

HIGH

Himmelblau < 0.9.22 - Insufficiently Protected Credentials

Title source: rule

Description

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. In versions 0.8.0 through 0.9.21 and 1.0.0-beta through 1.1.0, Himmelblau stores the cloud TGT received during logon in the Kerberos credential cache. The created credential cache collection and received credentials are stored as world readable. This is fixed in versions 0.9.22 and 1.2.0. To work around this issue, remove all read access to Himmelblau caches for all users except for owners.

References (5)

[Exploit, Vendor Advisory] https://github.com/himmelblau-idm/himmelblau/security/advisories/GHSA-phfx-rjfw-wj83

[Patch] https://github.com/himmelblau-idm/himmelblau/commit/b562053df3dffb1dd9ab3d09af986886773be2ad

[Patch] https://github.com/himmelblau-idm/himmelblau/commit/faae58b0384aca8b21b4be5f1c507412eec3778a

View Patch ZIP pw:eip

[Release Notes] https://github.com/himmelblau-idm/himmelblau/releases/tag/0.9.22

[Release Notes] https://github.com/himmelblau-idm/himmelblau/releases/tag/1.2.0

Scores

CVSS v3 7.1

EPSS 0.0003

EPSS Percentile 8.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-522

Status published

Products (1)

himmelblau-idm/himmelblau 0.8.0 - 0.9.22

Published Aug 07, 2025

Tracked Since Feb 18, 2026