CNNVD-202508-2033 Information

CNNVD ID

CNNVD-202508-2033

Related CVE

CVE-2025-55282

• CNNVD Published: 2025-08-18

Description (Chinese)

aiven-db-migrate是Aiven开源的一个应用程序。 aiven-db-migrate 1.0.7之前版本存在路径遍历漏洞，该漏洞源于权限提升漏洞，可能导致超级用户权限获取。

Description (English)

Aiden-db-migate is an application of the Aiven Open Source. There is a loophole in the path before version 1.7. This loophole stems from an increase in privileges, which may lead to super-user access.

Hazard Level

Low

Vulnerability Type

路径遍历

Affected Vendor

Aiven

Published

2025-08-18

Last Modified

2026-02-24

References

https://github.com/aiven/aiven-db-migrate/security/advisories/GHSA-hmvf-93r4-36f9 https://github.com/aiven/aiven-db-migrate/commit/39517dc55720055d93262033b142a365f5bf92c5 https://nvd.nist.gov/vuln/detail/CVE-2025-55282

Patch

https://github.com/aiven/aiven-db-migrate/tags