What is CVE-2025-26789?

A medium-severity vulnerability in Logpoint AgentX prior to version 1.5.0 allows unauthorized access to sensitive information. Organizations are advised to address this issue promptly.

What is the severity of CVE-2025-26789?

CVE-2025-26789 has a severity rating of MEDIUM with a CVSS base score of 6.9.

CVE-2025-26789 | Medium Vulnerability in Logpoint AgentX

An issue was discovered in Logpoint AgentX before 1.5.0. This vulnerability allows li-admin users to access sensitive information about AgentX Manager in a Logpoint deployment. With a CVSS score of 6.9, this vulnerability is classified as medium severity. Risk to organizations includes potential exposure of sensitive information, which can lead to further compromises if not managed properly. Organizations should prioritize patching immediately.

The vulnerability is caused by limited access controls, which means that even those with elevated privileges may inadvertently expose sensitive information. Given the nature of the flaw, it is crucial for organizations to understand the implications and remediate the issue as part of their security protocols.

As of the latest information, there are no known exploits or proof of concept (PoC) available in the public domain, but organizations must remain vigilant against potential exploitation. Regular updates and monitoring for vulnerabilities should be part of a comprehensive security strategy.

Organizations using Logpoint AgentX should take immediate action to upgrade to version 1.5.0 or later, where this vulnerability is addressed. Additionally, they should evaluate their overall access controls to prevent similar issues in the future.

Vulnerability Details

This vulnerability allows li-admin users to access sensitive information about AgentX Manager in a Logpoint deployment. The CVSS score for this vulnerability is 6.9, indicating medium severity. This classification is important because it underscores the need for organizations to prioritize their remediation efforts.

The vulnerability has been classified under CWE-1336, which involves inadequate access controls. The published date of this CVE is February 14, 2025, and it remains in a deferred status as of the latest update.

Technical Analysis

The root cause of this vulnerability lies in the inadequate access controls implemented within the Logpoint AgentX application. The attack vector is network-based, with low attack complexity, meaning that an attacker may exploit this vulnerability with minimal effort. The requirement for high privileges makes it somewhat challenging for unauthorized users to access sensitive information without the necessary permissions.

No user interaction is required for exploitation, which increases the risk profile of this vulnerability. The confidentiality impact is rated as high, indicating that sensitive information could be exposed. However, there are no impacts on integrity or availability.

Risk & Impact Analysis

The real-world deployment risk associated with this vulnerability is significant. Organizations that utilize Logpoint AgentX may inadvertently expose sensitive information to unauthorized users. This can lead to data breaches, regulatory penalties, and reputational damage.

The urgency for remediation is underscored by the vulnerability's potential for exploitation, despite the current lack of known exploitation. Organizations should schedule remediation in their patch cycle to address this issue promptly.

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions prior to vendor patch.

Mitigation & Remediation

Organizations should upgrade to Logpoint AgentX version 1.5.0 or later to mitigate this vulnerability. If an upgrade is not immediately possible, review access controls and implement temporary measures to restrict unauthorized access to sensitive information.

For comprehensive security, consider engaging in penetration testing to identify potential vulnerabilities in your systems.

Detection Guidance

Monitor logs for unauthorized access attempts, especially from li-admin users. Look for behavioral anomalies that could indicate attempts to exploit this vulnerability. Additionally, implement network signatures to detect unusual access patterns.

AppSecure Threat Intelligence Insight

This vulnerability highlights the ongoing issue of access control weaknesses in software systems. Organizations must remain vigilant and continuously assess their security posture to mitigate risks associated with similar vulnerabilities. Implementing a robust vulnerability management program can help organizations stay ahead of potential threats.

Additionally, organizations should engage in regular security assessments and stay informed about emerging threats to better defend their environments.

For further insights into security strategies, consider reading about penetration testing methodology and how it can enhance your security framework.

Understanding the implications of vulnerabilities like CVE-2025-26789 is crucial for maintaining a secure environment and protecting sensitive data.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-26789: Medium Vulnerability in Logpoint AgentX