CVE-2025-61688

CVSS v3.1

8.6

High

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Omni versions prior to 1.1.5 Omni versions prior to 1.0.2

Description Omni, a platform for managing Kubernetes, may disclose sensitive information through an API endpoint in affected versions. The platform operates on bare metal, virtual machines, and cloud infrastructures.

Recommendations Update Omni to version 1.1.5 or later. Update Omni to version 1.0.2 or later.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2025-61688

GHSA-77R9-W39M-9XH5

GO-2025-4022

OPENSUSE-SU-2025:15710-1

Affected Products

Omni

CVE-2025-61688

Weakness Enumeration

Related Identifiers

Affected Products

References · 86