CVE-2025-32408

Summary

In Soffid Console 3.6.31 before 3.6.32, authorization to use the pam service is mishandled.

Affected Software

VendorProductVersion RangeStatus
SoffidIAM3.6.31 < 3.6.32affected

Weaknesses

  • CWE-863: CWE-863 Incorrect Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References