CNNVD-202507-2384 Information

CNNVD ID

CNNVD-202507-2384

Related CVE

CVE-2025-52163

• CNNVD Published: 2025-07-18

Description (Chinese)

Agorum core open是德国Agorum公司的一款企业内容管理系统。 Agorum core open 11.9.2之前版本和11.10.1之前版本存在安全漏洞，该漏洞源于TunnelServlet组件处理不当，可能导致服务端请求伪造攻击。

Description (English)

Agorum core open is an enterprise content management system of Agorum, Germany. There was a security loophole in previous versions of Agorum core open 11.9.2 and in previous versions of 11.10.1, which stemmed from the mishandling of the TunelServlet component, which could lead to a false attack requested by the service.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Agorum

Published

2025-07-18

Last Modified

2026-02-24

References

http://agorum.com https://herolab.usd.de/security-advisories/usd-2025-0025/ https://access.redhat.com/security/cve/cve-2025-52163

Patch

https://www.agorum.com/agorum-core/download-portal