High Severity Vulnerability
This vulnerability has been rated as High severity. Immediate action is recommended.
CVE-2025-9142
High
Low
Medium
High
Critical
7.5
CVSS Score
Published: Jan 14, 2026
Last Modified: Jan 14, 2026
Vulnerability Description
A local user can trigger Harmony SASE Windows client to write or delete files outside the intended certificate working directory.
CVSS Metrics
Common Vulnerability Scoring System
Vector String:
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Attack Vector
L
Attack Complexity
H
Privileges Required
L
User Interaction
R
Scope
C
Confidentiality
H
Integrity
H
Availability
H
References & Resources
Severity Details
7.5
out of 10.0
High
Key Information
- Published Date
- January 14, 2026
