CNNVD-202507-2227 Information
CNNVD ID
CNNVD-202507-2227
Related CVE
- CNNVD Published: 2025-07-16
Description (Chinese)
Sawtooth Lighthouse Studio是美国Sawtooth公司的一个联合分析平台。 Sawtooth Lighthouse Studio 9.16.14之前版本存在安全漏洞,该漏洞源于模板注入,可能导致执行任意命令。
Description (English)
Sawtooth Lighthouse Studio is a joint analytical platform of Sawtooth in the United States. There was a security loophole in the previous version of Sawtooth Lighthouse Studio 9.16.14, which originated from the injection of templates and could lead to the execution of arbitrary orders.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Sawtooth
Published
2025-07-16
Last Modified
2026-02-24
References
https://slcyber.io/assetnote-security-research-center/rce-in-the-most-popular-survey-software-youve-never-heard-of/ https://sawtoothsoftware.com/resources/software-downloads/lighthouse-studio https://access.redhat.com/security/cve/cve-2025-34300
Patch
https://sawtoothsoftware.com/resources/software-downloads/lighthouse-studio
Share on: