CVE-2025-8662

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-8662

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-8662.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-8662

Published

2025-09-02T03:15:42.747Z

Modified

2025-11-20T12:40:57.448936Z

Severity

4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator

Summary

[none]

Details

OpenAM (OpenAM Consortium Edition) contains a vulnerability that may cause it to malfunction as a SAML IdP due to a tampered request.This issue affects OpenAM: from 14.0.0 through 14.0.1.

References

https://openam-jp.github.io/Advisories/CVE-2025-8662/

Affected packages

Git / github.com/openam-jp/openam

Affected ranges

Type: GIT
Repo: https://github.com/openam-jp/openam
Events: Introduced

0f2fda8adb52e8998602260018117e19dce695d4

Fixed

4de2d04cb1b7e1cf40b7f5cf1fa66eae92b96cc3

Affected versions

14.*

14.0.0

14.0.1