CNNVD-202506-2944 Information

CNNVD ID

CNNVD-202506-2944

Related CVE

CVE-2025-52935

• CNNVD Published: 2025-06-23

Description (Chinese)

Dragonfly是DragonflyDB开源的一个框架，可以对任何内容类型进行动态处理。 Dragonfly 1.30.1版本和1.30.0版本和1.28.18版本存在输入验证错误漏洞，该漏洞源于lua_struct.C文件存在整数溢出或环绕错误。

Description (English)

Dragonfly is an open-source framework for DragonflyDB that can dynamically process any type of content. There is an input authentication error gap in versions 1.30.1 and 1.30.0 and 1.28.18, which stems from an integer or loop error in the lua strutt.C file.

Hazard Level

Low

Vulnerability Type

输入验证错误

Affected Vendor

DragonflyDB

Published

2025-06-23

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-52935 https://access.redhat.com/security/cve/cve-2025-52935

Patch

https://github.com/dragonflydb/dragonfly/releases