CNNVD-202508-2098 Information

CNNVD ID

CNNVD-202508-2098

Related CVE

CVE-2025-54336

• CNNVD Published: 2025-08-19

Description (Chinese)

Plesk Obsidian是瑞士Plesk公司的一款主机控制面板。 Plesk Obsidian 18.0.70版本存在安全漏洞，该漏洞源于_isAdminPasswordValid使用==比较，可能导致绕过身份验证。

Description (English)

Plesk Obsidian is a mainframe control panel of the Swiss company Plesk. Release 18.0.70 of Plesk Obsidian contains a security loophole originating in isAdminPasswordValid’s use=comparison, which could lead to circumvention of identification.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Plesk

Published

2025-08-19

Last Modified

2026-02-24

References

https://www.plesk.com/blog/plesk-news-announcements/introducing-plesk-obsidian-18-0-70-anniversary-edition/ https://support.plesk.com/hc/en-us/articles/33785727869847-Vulnerability-CVE-2025-54336 https://blog.aziz.tn/2025/08/cve-2025-54336.html/ https://nvd.nist.gov/vuln/detail/CVE-2025-54336

Patch

https://www.plesk.com/