关键漏洞信息 漏洞标题 Bypass of IAM Authenticator in Secrets Manager, Self-Hosted (formerly Conjur Enterprise) and Conjur OSS 严重性 Critical CVSS v4 base metrics: 9.1 / 10 影响的版本 Conjur OSS (CyberArk): 1.19.5 - 1.22.0 Secrets Manager, Self-Hosted (formerly known as Conjur Enterprise) (CyberArk): 13.1 - 13.5; 13.6 已修复的版本 Conjur OSS (CyberArk): 1.22.1 Secrets Manager, Self-Hosted (formerly known as Conjur Enterprise) (CyberArk): 13.5.1; 13.6.1 描述 攻击者可以通过操纵AWS签名的头来利用恶意构造的正则表达式,将Secrets Manager、Self-Hosted(以前称为Conjur Enterprise)发送到AWS的身份验证验证请求重定向到攻击者控制的恶意服务器。这种重定向可能导致Secrets Manager、Self-Hosted IAM身份验证器的绕过,授予攻击者权限给其请求被操纵的客户端。 CVSS v4 基础指标 Exploitability Metrics - Attack Vector: Network - Attack Complexity: Low - Attack Requirements: Present - Privileges Required: None - User interaction: None Vulnerable System Impact Metrics - Confidentiality: High - Integrity: High - Availability: None Subsequent System Impact Metrics - Confidentiality: None - Integrity: None - Availability: None CVE ID CVE-2025-49827 弱点 CWE-807