CNNVD-202507-062 Information
CNNVD ID
CNNVD-202507-062
Related CVE
- CNNVD Published: 2025-07-01
Description (Chinese)
Sentry是Sentry开源的一个面向开发人员的错误跟踪和性能监控平台。 Sentry 25.5.0之前版本存在安全漏洞,该漏洞源于竞争条件和授权代码处理不当,可能以此来保持用户帐户的持久性。
Description (English)
Sentry is a development-oriented bug-tracking and performance-monitoring platform that is open to Sentry. There was a security loophole in the pre-Sentry 25.5.0 version, which stemmed from competitive conditions and inadequate handling of authorized codes, which could be used to maintain the durability of user accounts.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Seowon Intech
Published
2025-07-01
Last Modified
2026-02-24
References
https://github.com/getsentry/sentry/pull/86069 https://github.com/getsentry/sentry/pull/86532 https://github.com/getsentry/sentry/pull/85570 https://github.com/getsentry/sentry/pull/85571 https://github.com/getsentry/sentry/commit/e6241254aead969e6c8490a81cde9a01335df19d https://github.com/getsentry/sentry/security/advisories/GHSA-mgh8-h4xc-pfmj https://github.com/getsentry/sentry/commit/57f0129e1e977b76fe8d16667a586578791a3dcd https://github.com/getsentry/sentry/commit/ab5fd932ca6bd46529ba3308b4669e3cee719b8f https://access.redhat.com/security/cve/cve-2025-53099
Patch
https://github.com/getsentry/sentry/releases
Share on: