Insertion of Sensitive Information into Log File in upKeeper Manager by upKeeper Solutions
CVE-2025-11446

7.3HIGH

Key Information:

Vendor: Upkeeper Solutions
Status: Upkeeper Manager
Vendor: CVE Published:; 19 November 2025

🔔 Create Upkeeper Solutions Vulnerability Alert

What is CVE-2025-11446?

The Insertion of Sensitive Information into Log File vulnerability in upKeeper Manager by upKeeper Solutions enables the unintended exposure of sensitive data through log files. This issue arises when known domain credentials are utilized improperly, which could lead to unauthorized access or disclosure of confidential information. Affected versions include upKeeper Manager from 5.2.0 up to, but not including, 5.2.12. Security improvements are recommended to mitigate any potential risks associated with this vulnerability.

Affected Version(s)

upKeeper Manager 5.2.0 < 5.2.12

References

https://support.upkeeper.se/hc/en-us/articles/23693858370...

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 19, 2025
Vulnerability Reserved
Oct 7, 2025

JSON