ZDI-CAN-25336: ZDI-25-085: Logsign Unified SecOps Platform Authentication Bypass Vulnerability
First published: Wed Feb 05 2025(Updated: )
This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web service, which listens on TCP port 443 by default. The issue results from the lack of proper implementation of the authentication algorithm. An attacker can leverage this vulnerability to bypass authentication on the system.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Logsign Unified SecOps Platform | ||
| Logsign Unified SecOps Platform |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of ZDI-CAN-25336?
ZDI-CAN-25336 has a CVSS rating of 9.8, indicating it is critical in severity.
How do I fix ZDI-CAN-25336?
To fix ZDI-CAN-25336, you should immediately apply the latest security patches provided by Logsign for the Unified SecOps Platform.
What types of attacks can exploit ZDI-CAN-25336?
ZDI-CAN-25336 can be exploited by remote attackers to bypass authentication without any user credentials.
Which software is affected by ZDI-CAN-25336?
ZDI-CAN-25336 affects the Logsign Unified SecOps Platform.
Is authentication required to exploit ZDI-CAN-25336?
No, authentication is not required to exploit ZDI-CAN-25336.
- collector/zdi-published
- source/ZDI
- alias/ZDI-CAN-25336
- agent/source
- agent/last-modified-date
- agent/title
- agent/type
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- collector/zdi-advisory
- alias/ZDI-25-085
- alias/CVE-2025-1044
- agent/severity
- agent/references
- agent/softwarecombine
- agent/description
- agent/tags
- agent/event
- vendor/logsign
- canonical/logsign unified secops platform