Published: 11/02/2025 Updated: 11/02/2025

Unauthenticated Authentication Bypass in Logsign Unified SecOps Platform

A critical authentication bypass vulnerability exists in the Logsign Unified SecOps Platform, which allows remote attackers to circumvent authentication mechanisms without requiring any prior credentials. The vulnerability specifically resides within the web service running on the default TCP port 443 and stems from inadequate implementation of the authentication algorithm. An attacker can exploit this flaw to gain unauthorized access to the system. The vulnerability was identified as ZDI-CAN-25336 and poses significant security risks by enabling unauthenticated remote access to the platform.

Vulnerable Product	Search on Vulmon	Subscribe to Product
logsign unified secops platform

CWE-287 https://nvd.nist.gov https://www.zerodayinitiative.com/advisories/ZDI-25-085/https://www.first.org/epss https://support.logsign.net/hc/en-us/articles/22076844908946-18-10-2024-Version-6-4-32-Release-Notes https://www.zerodayinitiative.com/advisories/ZDI-25-085/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2025-1044

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect