CNNVD-202507-1801 Information

CNNVD ID

CNNVD-202507-1801

Related CVE

CVE-2025-7552

• CNNVD Published: 2025-07-13

Description (Chinese)

Dromara Northstar是中国Dromara开源的一个AI量化交易平台。 Dromara Northstar 7.3.5及之前版本存在安全漏洞，该漏洞源于对文件AuthorizationInterceptor.java中参数Request的错误操作导致访问控制不当。

Description (English)

Droma Northstar is an AI Quantified Trading Platform for Dromara Open Source in China. There is a security loophole in Droma Northstar 7.3.5 and earlier versions, which stems from an error in the use of the parameter Request in document Autoration Interceptor.java, resulting in inappropriate access controls.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

dromara

Published

2025-07-13

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/cve-2025-7552 https://nvd.nist.gov/vuln/detail/CVE-2025-7552

Patch

https://gitee.com/dromara/northstar/releases