Primary

Context

Logsign Unified SecOps Platform Authentication Bypass Vulnerability

Vulnerability

Patched

An authentication bypass vulnerability has been identified in Logsign Unified SecOps Platform. This issue allows remote attackers to bypass authentication on affected systems. The vulnerability arises from improper implementation of the authentication algorithm in the web service, which by default listens on TCP port 443. Notably, authentication is not required to exploit this vulnerability.

Impact

Exploitation of this vulnerability allows for unauthorized access to the affected system, bypassing authentication mechanisms entirely.

Remediation

Logsign has released an update to address this vulnerability. Details about the update can be found in the Logsign release notes.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

5.0

exploitability

7.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

5.0

exploitability

7.0

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Logsign Unified SecOps Platform Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Logsign Unified SecOps Platform

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating