Medium severityOSV Advisory· Published Aug 6, 2025· Updated Jun 17, 2026
CVE-2025-54876
CVE-2025-54876
Description
The Janssen Project is an open-source identity and access management (IAM) platform. In versions 1.9.0 and below, Janssen stores passwords in plaintext in the local cli_cmd.log file. This is fixed in the nightly prerelease.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
31.0.0-a3, 1.0.0-a4, charts-v1.0.0-beta.14, …+ 1 more
- (no CPE)range: 1.0.0-a3, 1.0.0-a4, charts-v1.0.0-beta.14, …
- (no CPE)range: <=1.9.0
- Range: <=1.9.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.