CNNVD-202508-1871 Information

CNNVD ID

CNNVD-202508-1871

Related CVE

CVE-2025-55285

• CNNVD Published: 2025-08-15

Description (Chinese)

Backstage是Backstage开源的一个应用软件。后台是一个开放的平台,用于构建开发者门户。 Backstage 2.1.1之前版本存在日志信息泄露漏洞，该漏洞源于输入值重复记录导致部分秘密未正确编辑。

Description (English)

Backstage is a Backstage open source application. The back desk is an open platform for building the developers ’ portal. The previous version of Backstage 2.1.1 had a log information leak leak that originated from a double-entry recording that resulted in some of the secrets being incorrectly edited.

Hazard Level

Critical

Vulnerability Type

日志信息泄露

Affected Vendor

Backstage

Published

2025-08-15

Last Modified

2026-02-24

References

https://github.com/backstage/backstage/security/advisories/GHSA-3x3q-ghcp-whf7 https://github.com/backstage/backstage/commit/c371f6fe12371de31dca537510e6653e287cdc2e https://nvd.nist.gov/vuln/detail/CVE-2025-55285

Patch

https://github.com/backstage/backstage/releases