CNNVD-202506-1794 Information
CNNVD ID
CNNVD-202506-1794
Related CVE
- CNNVD Published: 2025-06-13
Description (Chinese)
Handcrafted in the Alps Goodby CSV是Handcrafted in the Alps开源的一个应用软件。 Handcrafted in the Alps Goodby CSV 1.4.3之前版本存在安全漏洞,该漏洞源于不安全的反序列化,可能导致远程代码执行。
Description (English)
Handcrafted in the Alps Goodby CSV is an application from Handcrafted in the Alps Open Source. The previous version of Handcrafted in the Alps Goodby CSV 1.4.3 had a security loophole, which stemmed from unsafe back-sequencing and could lead to remote code implementation.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
Handcrafted in the Alps
Published
2025-06-13
Last Modified
2026-02-24
References
https://github.com/handcraftedinthealps/goodby-csv/commit/acd14c6ed85116bb2cb4da35ab62821e5cf54519 https://github.com/handcraftedinthealps/goodby-csv/security/advisories/GHSA-x3c7-22c8-prg7 https://access.redhat.com/security/cve/cve-2025-49597 https://nvd.nist.gov/vuln/detail/CVE-2025-49597
Patch
https://github.com/handcraftedinthealps/goodby-csv/releases
Share on: