CVE-2025-5129 | Sangfor 零信任访问控制系统 aTrust 2.3.10.60 MSASN1.dll uncontrolled search path

Inserito da Angelo Barbosa | Mag 23, 2025 | CVE

A vulnerability has been found in Sangfor 零信任访问控制系统 aTrust 2.3.10.60 and classified as critical. Affected by this vulnerability is an unknown functionality in the library MSASN1.dll. The manipulation leads to uncontrolled search path.

This vulnerability is known as CVE-2025-5129. Local access is required to approach this attack. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-5129 | Sangfor 零信任访问控制系统 aTrust 2.3.10.60 MSASN1.dll uncontrolled search path

Post correlati

CVE-2024-45391 | Tina CMS up to 1.6.1 Command Line Interface tina-lock.json information disclosure

CVE-2025-4131 | GmapsMania Plugin up to 1.1 on WordPress Shortcode gmap cross site scripting

CVE-2024-44913 | Irfanview 4.67.1.0 EXR File ReadEXR denial of service

CVE-2023-32858 | MediaTek MT8788 GZ information disclosure (ALPS07806008)