CNNVD-202507-499 Information
CNNVD ID
CNNVD-202507-499
Related CVE
- CNNVD Published: 2025-07-04
Description (Chinese)
Wikimedia Mediawiki - IPInfo Extension是Wikimedia基金会的一个用展示IP信息的扩展。 Wikimedia Mediawiki - IPInfo Extension 1.39.13之前版本、1.42.7之前版本和1.43.2之前版本存在安全漏洞,该漏洞源于资源消耗不受控制,可能导致过度分配。
Description (English)
Wikimedia Mediawiki - IPInfo Extension is an extension of Wikimedia Foundation to display IP information. Wikimedia Mediawiki - IPInfo Extension 1.39.13, 1.42.7 and 1.43.2 have security loopholes, which stem from uncontrolled resource consumption and may lead to overallocation.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2025-07-04
Last Modified
2026-02-24
References
https://gerrit.wikimedia.org/r/q/I08a7154f8fa08bb6f0940e522075bdc2a3d4433f https://gerrit.wikimedia.org/r/q/I474b7a1b3bc1e7597fee0826a18a0cf042359f0f https://phabricator.wikimedia.org/T392976 https://access.redhat.com/security/cve/cve-2025-53481
Patch
https://www.mediawiki.org/wiki/Special:ExtensionDistributor/IPInfo
Share on: