CVE-2025-25235

Omnissa Secure Email Gateway (SEG) updates address Server-Side Request Forgery (SSRF) vulnerability

Description

Server-Side Request Forgery (SSRF) in Omnissa Secure Email Gateway (SEG) in SEG prior to 2.32 running on Windows and SEG prior to 2503 running on UAG allows routing of network traffic such as HTTP requests to internal networks.

INFO

Published Date :

2025-08-11T21:47:25.510Z

Last Modified :

2025-08-12T15:45:31.666Z

Source :

Omnissa

AFFECTED PRODUCTS

The following products are affected by CVE-2025-25235 vulnerability.

Vendors	Products
Omnissa	Secure Email Gateway

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-25235.

URL	Resource
https://www.omnissa.com/omsa-2025-0003/

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact