Core Privileged Access Manager (Boks)
Approved changes feed: RSS · Atom
cpe:2.3:a:fortra:core_privileged_access_manager_(boks):*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Fortra (f14f6bd1-8bf2-53f9-b0d6-b2745f517ba7) |
|---|---|
| Product | Core Privileged Access Manager (Boks) (77134c5b-184c-554a-ae40-6c1e18bffb3a) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-5141 |
vulnerable | 2026-06-03 15:06:27.097844 |
Core Privileged Access Manager (BoKS) Leakage of Sensitive Data via the Cache
MEDIUM (5.5)
A binary in the BoKS Server Agent component of Fortra's Core Privileged Access Manager (BoKS) on versions 7.2.0 (up to 7.2.0.17), 8.1.0 (up to 8.1.0.22), 8.1.1 (up to 8.1.1.7), 9.0.0 (up to 9.0.0.1) and also legacy tar installs of BoKS 7.2 without hotfix #0474 on Linux, AIX, and Solaris allows low privilege local users to dump data from the cache.
Published: 2025-06-17T19:30:51.781Z
Updated: 2025-08-29T20:11:13.423Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13532 |
vulnerable | 2026-06-03 14:58:46.363665 |
Weak Password Hash in Core Privileged Access Manager (BoKS)
MEDIUM (6.2)
Insecure defaults in the Server Agent component of Fortra's Core Privileged Access Manager (BoKS) can result in the selection of weak password hash algorithms. This issue affects BoKS Server Agent 9.0 instances that support yescrypt and are running in a BoKS 8.1 domain.
Published: 2025-12-16T20:01:02.743Z
Updated: 2025-12-16T20:23:51.768Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.