Home > Vulnerability Database > CVE-2025-54882

Mend.io Vulnerability Database

CVE-2025-54882

Good to know:

Date: August 6, 2025

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. In versions 0.8.0 through 0.9.21 and 1.0.0-beta through 1.1.0, Himmelblau stores the cloud TGT received during logon in the Kerberos credential cache. The created credential cache collection and received credentials are stored as world readable. This is fixed in versions 0.9.22 and 1.2.0. To work around this issue, remove all read access to Himmelblau caches for all users except for owners.

Severity Score

7.1

Related Resources (7)

Url: https://github.com/himmelblau-idm/himmelblau/releases/tag/1.2.0

Url: https://github.com/himmelblau-idm/himmelblau/commit/b562053df3dffb1dd9ab3d09af986886773be2ad

Url: https://github.com/himmelblau-idm/himmelblau/releases/tag/0.9.22

Url: https://github.com/himmelblau-idm/himmelblau/security/advisories/GHSA-phfx-rjfw-wj83

Url: https://github.com/himmelblau-idm/himmelblau/commit/faae58b0384aca8b21b4be5f1c507412eec3778a

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-54882

Url: https://www.mend.io/vulnerability-database/CVE-2025-54882

Severity Score

7.1

Weakness Type (CWE)

Insufficiently Protected Credentials

CWE-522

Top Fix

Upgrade Version

Upgrade to version https://github.com/himmelblau-idm/himmelblau.git - 0.9.22

Learn More

CVSS v3.1

Base Score:	7.1
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-54882

Good to know:

Date: August 6, 2025

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?