CVE-2025-24501
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-24501
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An improper input validation allows an unauthenticated attacker to alter PAM logs by sending a specially crafted HTTP request.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Broadcom Symantec Privileged Access Management 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Broadcom Symantec Privileged Access Management(Broadcom Symantec PAM)是美国博通(Broadcom)公司的一种安全软件。通过保护敏感的管理凭据、控制特权用户访问、主动实施安全策略以及监控和记录虚拟、云和物理环境中的特权用户活动来帮助防止安全漏洞。 Broadcom Symantec Privileged Access Management存在安全漏洞,该漏洞源于输入验证不正确。攻击者利用该漏洞可以通过发送特制的 HTTP 请求来更改 PA
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Broadcom | Symantec Privileged Access Management | 3.4.6 | - |
II. Public POCs for CVE-2025-24501
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-24501
请登录查看更多情报信息。
Same Patch Batch · Broadcom · 2025-01-30 · 8 CVEs total
| CVE-2025-24503 | Broadcom Symantec Privileged Access Management 安全漏洞 | |
| CVE-2025-24505 | Broadcom Symantec Privileged Access Management 安全漏洞 | |
| CVE-2025-24507 | Broadcom Symantec Privileged Access Management 安全漏洞 | |
| CVE-2025-24504 | Broadcom Symantec Privileged Access Management 安全漏洞 | |
| CVE-2025-24502 | Broadcom Symantec Privileged Access Management 安全漏洞 | |
| CVE-2025-24506 | Broadcom Symantec Privileged Access Management 安全漏洞 | |
| CVE-2025-24500 | Broadcom Symantec Privileged Access Management 安全漏洞 |
IV. Related Vulnerabilities
Same product: Symantec Privileged Access Management
- CVE-2025-24507
Broadcom Symantec Privileged Access Management 安全漏洞 - CVE-2025-24506
Broadcom Symantec Privileged Access Management 安全漏洞 - CVE-2025-24505
Broadcom Symantec Privileged Access Management 安全漏洞 - CVE-2025-24504
Broadcom Symantec Privileged Access Management 安全漏洞 - CVE-2025-24503
Broadcom Symantec Privileged Access Management 安全漏洞
Same vendor: Broadcom
- CVE-2026-3991
Elevation of Privileges in Symantec Data Loss Prevention Win - CVE-2026-3862
Cross-Site Scripting Vulnerability in SiteMinder Administrat - CVE-2025-13919
Component Object Model (COM) Hijacking in Symantec Endpoint - CVE-2025-13918
Elevation of Privileges in Symantec Endpoint Protection Wind - CVE-2025-13917
Elevation of Privileges in Web Security Services (WSS) Agent
Same weakness: CWE-20
V. Comments for CVE-2025-24501
No comments yet