ByteOS Network

NVD Vulnerability Details :

CVE-2025-54781

Awaiting Analysis

Source-security-advisories@github.com

Published At-02 Aug, 2025 | 00:15

Updated At-04 Aug, 2025 | 15:06

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. When debugging is enabled for Himmelblau in version 1.0.0, the himmelblaud_tasks service leaks an Intune service access token to the system journal. This short-lived token can be used to detect the host's Intune compliance status, and may permit additional administrative operations for the Intune host device (though the API for these operations is undocumented). This is fixed in version 1.1.0. To workaround this issue, ensure that Himmelblau debugging is disabled.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	2.8	LOW	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:N/A:N

Weaknesses

CWE ID	Type	Source
CWE-532	Primary	security-advisories@github.com

References

Hyperlink	Source	Resource
https://github.com/himmelblau-idm/himmelblau/commit/2d512bded90ac6a54fcdf737b43ff5d9d4cdb59e	security-advisories@github.com	N/A
https://github.com/himmelblau-idm/himmelblau/releases/tag/1.1.0	security-advisories@github.com	N/A
https://github.com/himmelblau-idm/himmelblau/security/advisories/GHSA-78qg-vmrw-574w	security-advisories@github.com	N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History