CNNVD-202507-096 Information

Jul 02, 2025 cve

CNNVD ID

CNNVD-202507-096

CVE-2025-34075

CNNVD Published: 2025-07-02

Description (Chinese)

Vagrant等都是的产品。Vagrant是用于管理虚拟机生命周期的命令行实用程序。在单个一次性且一致的环境中隔离依赖项及其配置。WebSockets ws等都是(WebSockets)开源的产品。ws是一个 Node.js WebSocket 库。LangGenius dify等都是(LangGenius)开源的产品。dify是一个开源的 LLM 应用程序开发平台。该CVE编号已撤回。

Description (English)

Vagrent and others are products. Vagrent is a command-based practical program for managing the virtual machine life cycle. Segregate the dependency item and its configuration in a single, one-time and consistent environment. WebSockets ws are all open-source products. Ws is a Node.js WebSocket library. LangGenius Dify and others are open-source products. Diffy is an open-source LLM application development platform. The CVE number has been withdrawn.

Hazard Level

Medium

Published

2025-07-02

Last Modified

2026-02-24

References

https://vulncheck.com/advisories/hashicorp-vagrant-synced-folder-vagrantfile-breakout https://developer.hashicorp.com/vagrant/docs/vagrantfile https://developer.hashicorp.com/vagrant/docs/synced-folders/basic_usage https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/local/vagrant_synced_folder_vagrantfile_breakout.rb https://access.redhat.com/security/cve/cve-2025-34075

Share on: