CNNVD-202506-1554 Information
CNNVD ID
CNNVD-202506-1554
Related CVE
- CNNVD Published: 2025-06-10
Description (Chinese)
Apache CloudStack是美国阿帕奇(Apache)基金会的一套基础架构即服务(IaaS)云计算平台。该平台主要用于部署和管理大型虚拟机网络。 Apache CloudStack存在信息泄露漏洞,该漏洞源于访问控制不当,可能导致信息泄露。
Description (English)
Apache CloudStack is a basic infrastructure of the Apache Foundation in the United States, i.e., the Iaas cloud computing platform. The platform is used primarily for the deployment and management of a large virtual network. There is an information leak in Apache CloudStack, which stems from inadequate access controls, which may lead to the disclosure of information.
Hazard Level
High
Vulnerability Type
信息泄露
Affected Vendor
阿帕奇
Published
2025-06-10
Last Modified
2026-02-24
References
https://www.shapeblue.com/shapeblue-security-advisory-apache-cloudstack-security-releases-4-19-3-0-and-4-20-1-0/ https://cloudstack.apache.org/blog/cve-advisories-4.19.3.0-4.20.1.0/ https://lists.apache.org/thread/y3qnwn59t8qggtdohv7k7vw39bgb3d60 https://nvd.nist.gov/vuln/detail/CVE-2025-30675 https://access.redhat.com/security/cve/cve-2025-30675
Patch
https://cloudstack.apache.org/downloads/
Share on: