Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

OpenAM Consortium — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting OpenAM Consortium. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The OpenAM Consortium develops an open-source identity and access management platform enabling centralized authentication and authorization across enterprise applications. Historically, the project has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure session management. While no major public security incidents have been widely documented, the 5 recorded CVEs highlight ongoing security concerns in areas like authentication bypass and session handling. The platform's complexity and extensive integration points create potential attack surfaces, requiring regular security assessments and prompt patching to mitigate risks associated with its identity management functions.

Top products by OpenAM Consortium: OpenAM OpenAM (Open Source Edition) OpenAM (OpenAM Consortium Edition) OpenAM Web Policy Agent (OpenAM Consortium Edition)
CVE IDTitleCVSSSeverityPublished
CVE-2025-8662 OpenAM 安全漏洞 — OpenAM 7.5AIHighAI2025-09-02
CVE-2023-22320 OpenAM 路径遍历漏洞 — OpenAM Web Policy Agent (OpenAM Consortium Edition)CWE-22 7.5 -2023-01-10
CVE-2022-31735 OpenAM 输入验证错误漏洞 — OpenAM (OpenAM Consortium Edition)CWE-601 6.1 -2022-09-15
CVE-2018-0696 ForgeRock OpenAM 权限许可和访问控制漏洞 — OpenAM 8.8 -2019-02-13
CVE-2019-5915 OpenAM (开源版) 安全漏洞 — OpenAM (Open Source Edition) 6.1 -2019-02-13

This page lists every published CVE security advisory associated with OpenAM Consortium. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.