CNNVD-202507-2050 Information

CNNVD ID

CNNVD-202507-2050

Related CVE

CVE-2025-50819

• CNNVD Published: 2025-07-15

Description (Chinese)

arxiv-daily是OMAR个人开发者的一个自动更新论文的软件。 arxiv-daily 2025-05-06版本存在安全漏洞，该漏洞源于解析topic.yml文件时存在目录遍历漏洞。

Description (English)

Arxiv-daily is a software for auto-updates by OMAR personal developers. There is a security loophole in version 2025-05-06 of arxiv-daily file, which stems from a directory-topic.yml.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

Live Support

Published

2025-07-15

Last Modified

2026-02-24

References

https://github.com/beiyuouo/arxiv-daily https://github.com/amooryx/arxiv-daily/security/advisories/GHSA-xqg6-5wfv-4855 https://access.redhat.com/security/cve/cve-2025-50819 https://nvd.nist.gov/vuln/detail/CVE-2025-50819