Debug Command Execution Vulnerability in Akamai Enterprise Application Access
CVE-2025-24527

8HIGH

Key Information:

Vendor: Akamai
Status: Enterprise Application Access
Vendor: CVE Published:; 29 January 2025

What is CVE-2025-24527?

A vulnerability in Akamai Enterprise Application Access allows unauthorized administrators to execute debug commands on another tenant's 128-bit connector GUID if they are aware of it. This issue can lead to potential unauthorized access to sensitive information and functionality, affecting the overall integrity and security of the application environment.

Affected Version(s)

Enterprise Application Access 0 < 2025-01-17

References

https://techdocs.akamai.com/eaa/changelog

https://techdocs.akamai.com/eaa/changelog/january-29-2025

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 29, 2025
Vulnerability Reserved
Jan 23, 2025