CNNVD-202507-2896 Information

CNNVD ID

CNNVD-202507-2896

Related CVE

CVE-2025-46354

• CNNVD Published: 2025-07-22

Description (Chinese)

Bloomberg Comdb2是Bloomberg开源的一款分布式关系数据库管理系统。 Bloomberg Comdb2 8.1版本存在安全漏洞，该漏洞源于分布式事务提交/中止操作功能容易受到拒绝服务攻击。

Description (English)

Bloomberg Comdb2 is a distributed relationship database management system for Bloomberg ’ s open source. Release 8.1 of Bloomberg Comdb contains a security loophole that stems from the vulnerability of distributed service referral/discontinuation functions to denial of service attacks.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Bloomberg

Published

2025-07-22

Last Modified

2026-02-24

References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2198 https://access.redhat.com/security/cve/cve-2025-46354 https://nvd.nist.gov/vuln/detail/CVE-2025-46354

Patch

https://github.com/bloomberg/comdb2/tags