CNNVD-202506-3188 Information

CNNVD ID

CNNVD-202506-3188

Related CVE

CVE-2025-52480

• CNNVD Published: 2025-06-25

Description (Chinese)

Julia Registrator.jl是Julia开源的一个Julia包的注册机器人。 Julia Registrator.jl 1.9.5之前版本存在参数注入漏洞，该漏洞源于参数注入可能导致远程代码执行。

Description (English)

Julia Registrator.jl is a registered Julia package from Julia’s open source. Julia Registrator.jl 1.9.5 had a gap in parameters, which stemmed from the fact that input of parameters could result in remote code execution.

Hazard Level

High

Vulnerability Type

参数注入

Affected Vendor

Julia

Published

2025-06-25

Last Modified

2026-02-24

References

https://github.com/JuliaRegistries/Registrator.jl/security/advisories/GHSA-w8jv-rg3h-fc68 https://github.com/JuliaRegistries/Registrator.jl/pull/449 https://nvd.nist.gov/vuln/detail/CVE-2025-52480

Patch

https://github.com/JuliaRegistries/Registrator.jl/releases