CNNVD-202507-004 Information

CNNVD ID

CNNVD-202507-004

Related CVE

CVE-2025-53103

• CNNVD Published: 2025-07-01

Description (Chinese)

JUnit是JUnit开源的一个Java语言的测试框架。 JUnit 5.12.0至5.13.1版本存在安全漏洞，该漏洞源于Open Test Reporting XML文件可能泄露Git凭据。

Description (English)

Junit is a testing framework for a Java language from the Junit Open Source. There is a security loophole in Jonit 5.12.0 to 5.13.1, which stems from the possible leaking of Git documents from Open Test Reporting XML.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

JUnit

Published

2025-07-01

Last Modified

2026-02-24

References

https://github.com/junit-team/junit-framework/commit/d4fc834c8c1c0b3168cd030c13551d1d041f51bc https://github.com/junit-team/junit-framework/security/advisories/GHSA-m43g-m425-p68x https://access.redhat.com/security/cve/cve-2025-53103

Patch

https://junit.org/