PingAM Java Agent Security Update Advisory (CVE-2025-20059)

Mar 04 2025

Overview

We have released a security update to address a vulnerability in the PingAM Java Agent. Affected product users are advised to update to the latest version.

Affected Products

CVE-2025-20059

PingAM Java Agent Version: ~2024.9 (inclusive)
PingAM Java Agent Version: ~2023.11.1 (inclusive)
PingAM Java Agent version: ~5.10.3 (inclusive)

Resolved Vulnerabilities

Relative Path Traversal Vulnerability in PingAM Java Policy Agent (CVE-2025-20059)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-20059

PingAM Java Agent version: 2024.11
PingAM Java Agent version: 2023.11.2
PingAM Java Agent version: 5.10.4

References

[1] PingAM Java Agent Security Advisory #202404
https://backstage.forgerock.com/knowledge/advisories/article/a61848355

PingAM Java Agent Security Update Advisory (CVE-2025-20059)

Google Android Family March 2025 Routine Security Update Advisory

ManageEngine (ADSelfService Plus) Product March 2025 Security Update Advisory

Tags:

Google Android Family March 2025 Routine Security Update Advisory

ManageEngine (ADSelfService Plus) Product March 2025 Security Update Advisory