CVE-2025-34064 | One Identity OneLogin Active Directory Connector up to 6.1.4 JWT Signing Key exposure of resource

Inserito da Angelo Barbosa | Lug 1, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in One Identity OneLogin Active Directory Connector up to 6.1.4. This issue affects some unknown processing of the component JWT Signing Key Handler. The manipulation leads to exposure of resource.

The identification of this vulnerability is CVE-2025-34064. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-34064 | One Identity OneLogin Active Directory Connector up to 6.1.4 JWT Signing Key exposure of resource

Post correlati

CVE-2023-35075 | Mattermost up to 7.8.12/8.1.3 innerText/textContent cross site scripting

CVE-2024-5528 | GitLab Community Edition/Enterprise Edition up to 16.11.5/17.0.3/17.1.1 incomplete comparison with missing factors (Issue 464558)

CVE-2024-12130 | Rockwell Automation Arena up to 16.20.03 DOE File out-of-bounds

CVE-2025-2168 | Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider Plugin User Meta Update cross-site request forgery