Medium severity4.0NVD Advisory· Published Jul 19, 2025· Updated Jun 17, 2026
CVE-2025-52924
CVE-2025-52924
Description
In One Identity OneLogin before 2025.2.0, the SQL connection "application name" is set based on the value of an untrusted X-RequestId HTTP request header.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <2025.2.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.