PT-2025-29612 · Cyberark · Secrets Manager+1
Shahar Tal
+1
·
Published
2025-07-15
·
Updated
2026-01-22
·
CVE-2025-49827
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Conjur OSS versions 1.19.5 through 1.22.0
Secrets Manager, Self-Hosted versions 13.1 through 13.6
Description
Conjur provides secrets management and application identity for infrastructure. A malformed regular expression allows an attacker manipulating headers signed by AWS to redirect the authentication validation request sent by Secrets Manager, Self-Hosted to a malicious server. This redirection could bypass the IAM Authenticator, granting the attacker permissions granted to the client whose request was manipulated.
Recommendations
Conjur OSS version 1.22.1 or later
Secrets Manager, Self-Hosted version 13.5.1 or later
Secrets Manager, Self-Hosted version 13.6.1 or later
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Conjur Oss
Secrets Manager