CNNVD-202507-3490 Information

CNNVD ID

CNNVD-202507-3490

Related CVE

CVE-2025-8260

• CNNVD Published: 2025-07-28

Description (Chinese)

Vaelsys V4是西班牙Vaelsys公司的一款人工智能视频分析平台。 Vaelsys V4 .1.0版本存在安全漏洞，该漏洞源于对文件/grid/vgrid_server.php中参数xajaxargs的操作导致使用弱哈希。

Description (English)

Vaelsys V4 is an artificial smart video analysis platform for Vaelsys in Spain. The security loophole in Vaelsys V4.1.0 arises from the operation of the argument xajaxargs in the file/grid/vgrid server.php, resulting in the use of weak Hashi.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

Vaelsys

Published

2025-07-28

Last Modified

2026-02-24

References

https://vuldb.com/?id.317848 https://vuldb.com/?submit.616922 https://vuldb.com/?ctiid.317848 https://github.com/waiwai24/0101/blob/main/CVEs/Vaelsys/Unauthorized_Access_Leads_to_Sensitive_Information_Leakage_in_Vaelsys_V4_Platform.md https://access.redhat.com/security/cve/cve-2025-8260