CVE-2025-24502 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.8/4.2.0 Request Notifications improper authentication

Posted by Angelo Barbosa | Jan 30, 2025 | CVE

A vulnerability classified as critical was found in Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.8/4.2.0. This vulnerability affects unknown code of the component Request Notifications Handler. The manipulation leads to improper authentication.

This vulnerability was named CVE-2025-24502. The attack can only be done within the local network. There is no exploit available.

CVE-2025-24502 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.8/4.2.0 Request Notifications improper authentication

Related Posts

CVE-2023-48357 | Unisoc S8000 vsp Driver out-of-bounds write

CVE-2024-26027 | Intel Simics Package Manager software prior 1.8.3 uncontrolled search path (intel-sa-01116)

CVE-2024-10073 | flairNLP flair 0.14.0 Mode File Loader clustering.py ClusteringModel code injection

CVE-2024-22915 | SWFTools 0.9.2 rfxswf.c swf_DeleteTag use after free (Issue 215)