Home

Description

An incorrect OIDC authentication flow in Claroty Secure Access 3.3.0 through 4.0.2 can result in unauthorized user creation or impersonation of existing OIDC users.

PUBLISHED Reserved 2025-07-27 | Published 2025-10-14 | Updated 2025-10-14 | Assigner mitre

References

claroty.com

claroty.com/.../oidc-configurations-in-claroty-secure-access

cve.org (CVE-2025-54603)

nvd.nist.gov (CVE-2025-54603)

Download JSON