CNNVD-202508-1442 Information

CNNVD ID

CNNVD-202508-1442

Related CVE

CVE-2025-52385

• CNNVD Published: 2025-08-13

Description (Chinese)

Studio 3T是Studio 3T开源的一个原生跨平台MongoDB管理工具。 Studio 3T 2025.1.0及之前版本存在安全漏洞，该漏洞源于child_process模块处理特制payload不当，可能导致任意代码执行。

Description (English)

Studio 3T is a multi-platform MongoDB management tool from the open source of Studio 3T. Studio 3T 2025.1.0 and previous versions had a security loophole, which stemmed from the inappropriate handling of ad hoc Payload by the Child Process module, which could lead to arbitrary code implementation.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Studio 3T

Published

2025-08-13

Last Modified

2026-02-24

References

https://github.com/Studio3T/robomongo https://cwe.mitre.org/data/definitions/78.html https://cwe.mitre.org/data/definitions/94.html https://robomongo.org/ https://github.com/Kov404/CVE-2025-52385/tree/main https://access.redhat.com/security/cve/cve-2025-52385