CVE-2025-32987

CVSS 3.1 Score 6 of 10 (medium)

Details

Published Apr 15, 2025

CWE ID 214

Summary

CVE-2025-32987: The Arctera eDiscovery Platform, versions prior to 10.3.2, include a vulnerability where the Enterprise Vault Collection Module uses a cleartext password on a command line during the EVSearcher process. This issue poses a significant risk as cleartext passwords are easily accessible to unauthorized users, potentially leading to unauthorized access to the eDiscovery Platform. Attackers may exploit this vulnerability to gain privileged access, resulting in data breaches or other malicious activities. System administrators are advised to upgrade to the latest version of the platform or implement other mitigation strategies to protect against this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2025-32987

CVSS 3.1 Score 6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations