CVE-2025-6180

Vulnerability Description

The StrongDM Client insufficiently protected a pre-authentication token. Attackers could exploit this to intercept and reuse the token, potentially redeeming valid authentication credentials through a race condition.

Related Weaknesses (CWE)

CWE-319

References

https://security.strongdm.com/?tcuUid=56fde839-9388-4361-8d3b-9baa7b2de2ed

FAQ

What is CVE-2025-6180?

CVE-2025-6180 is a documented vulnerability. The StrongDM Client insufficiently protected a pre-authentication token. Attackers could exploit this to intercept and reuse the token, potentially redeeming valid authentication credentials through a...

How severe is CVE-2025-6180?

CVSS scoring is not yet available for CVE-2025-6180. Check NVD for updates.

Is there a patch for CVE-2025-6180?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.