1. Home
  2. CVE Database
  3. CVE-2025-54603
MEDIUM · 6.5

CVE-2025-54603

An incorrect OIDC authentication flow in Claroty Secure Access 3.3.0 through 4.0.2 can result in unauthorized user creation or impersonation of existing OIDC users.

Vulnerability Description

An incorrect OIDC authentication flow in Claroty Secure Access 3.3.0 through 4.0.2 can result in unauthorized user creation or impersonation of existing OIDC users.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
LOW

Related Weaknesses (CWE)

CWE-284

References

FAQ

What is CVE-2025-54603?

CVE-2025-54603 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An incorrect OIDC authentication flow in Claroty Secure Access 3.3.0 through 4.0.2 can result in unauthorized user creation or impersonation of existing OIDC users.

How severe is CVE-2025-54603?

CVE-2025-54603 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-54603?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.