CVE-2025-49828

high

Description

Conjur provides secrets management and application identity for infrastructure. Conjur OSS versions 1.19.5 through 1.21.1 and Secrets Manager, Self-Hosted (formerly known as Conjur Enterprise) 13.1 through 13.4.1 are vulnerable to remote code execution An authenticated attacker who can inject secrets or templates into the Secrets Manager, Self-Hosted database could take advantage of an exposed API endpoint to execute arbitrary Ruby code within the Secrets Manager process. This issue affects both Secrets Manager, Self-Hosted (formerly Conjur Enterprise) and Conjur OSS. Conjur OSS version 1.21.2 and Secrets Manager, Self-Hosted version 13.5 fix the issue.

References

References
More

https://thehackernews.com/2025/08/cyberark-and-hashicorp-flaws-enable.html

https://www.securityweek.com/enterprise-secrets-exposed-by-cyberark-conjur-vulnerabilities/

https://github.com/cyberark/conjur/security/advisories/GHSA-93hx-v9pv-qrm4

https://github.com/cyberark/conjur/releases/tag/v1.21.2

http://www.openwall.com/lists/oss-security/2025/08/08/1

http://www.openwall.com/lists/oss-security/2025/07/16/7

Details

Source: Mitre, NVD

Published: 2025-07-15

Updated: 2025-11-04

Named Vulnerability: Vault Fault

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

CVSS v4

Base Score: 8.6

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Severity: High

EPSS

EPSS: 0.00343