PT-2025-32240 · Microsoft+1 · Intune+2
Scabrero
·
Published
2025-08-07
·
Updated
2026-04-15
·
CVE-2025-54882
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Himmelblau versions 0.8.0 through 0.9.21
Himmelblau versions 1.0.0-beta through 1.1.0
Description
Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Versions 0.8.0 through 0.9.21 and 1.0.0-beta through 1.1.0 store the cloud TGT (Ticket Granting Ticket) received during logon in the Kerberos credential cache. The created credential cache collection and received credentials are stored as world readable. This issue is fixed in versions 0.9.22 and 1.2.0.
Recommendations
Himmelblau versions 0.8.0 through 0.9.21: Remove all read access to Himmelblau caches for all users except for owners.
Himmelblau versions 1.0.0-beta through 1.1.0: Remove all read access to Himmelblau caches for all users except for owners.
Exploit
Fix
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Himmelblau
Intune
Azure Entra Id