CNNVD-202508-2034 Information

CNNVD ID

CNNVD-202508-2034

Related CVE

CVE-2025-55283

• CNNVD Published: 2025-08-18

Description (Chinese)

aiven-db-migrate是Aiven开源的一个应用程序。 aiven-db-migrate 1.0.7之前版本存在命令注入漏洞，该漏洞源于权限提升漏洞，可能导致超级用户权限获取。

Description (English)

Aiden-db-migate is an application of the Aiven Open Source. A pre-Aiven-db-migrate version 1.0.7 contains a command-injecting loophole, which stems from a power-up gap that may lead to super-user access.

Hazard Level

Low

Vulnerability Type

命令注入

Affected Vendor

Aiven

Published

2025-08-18

Last Modified

2026-02-24

References

https://github.com/aiven/aiven-db-migrate/security/advisories/GHSA-wqhc-grmj-fjvg https://github.com/aiven/aiven-db-migrate/commit/36f6c7f7d06216975f625da0a1cb514253c4b3df https://nvd.nist.gov/vuln/detail/CVE-2025-55283

Patch

https://github.com/aiven/aiven-db-migrate/tags