CNNVD-202507-3614 Information

CNNVD ID

CNNVD-202507-3614

Related CVE

CVE-2025-50738

• CNNVD Published: 2025-07-29

Description (Chinese)

Memos是Memos开源的一个具有知识管理和社交功能的开源自托管备忘录中心。 Memos v0.24.3及之前版本存在安全漏洞，该漏洞源于允许嵌入任意URL的markdown图像，可能导致信息泄露。

Description (English)

Memos is an open-source Memos centre with knowledge management and socialization functions. There is a security loophole in Memos v. 0.24.3 and earlier versions, which stems from a Markdown image that allows embedding of any URL, which could lead to a leak of information.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Memos

Published

2025-07-29

Last Modified

2026-02-24

References

https://github.com/usememos/memos/issues/4707#issuecomment-2898504237 https://github.com/fai1424/Vulnerability-Research/tree/main/CVE-2025-50738 https://access.redhat.com/security/cve/cve-2025-50738 https://nvd.nist.gov/vuln/detail/CVE-2025-50738

Patch

https://github.com/usememos/memos/releases