VYPR

OneLogin

by Onelogin

CVEs (1)

  • CVE-2025-34062MedJul 1, 2025
    risk 0.37cvss epss 0.00

    An information disclosure vulnerability exists in OneLogin AD Connector versions prior to 6.1.5 via the /api/adc/v4/configuration endpoint. An attacker with access to a valid directory_token—which may be retrievable from host registry keys or improperly secured logs—can…