CNNVD-202508-3029 Information

CNNVD ID

CNNVD-202508-3029

Related CVE

CVE-2025-35115

• CNNVD Published: 2025-08-26

Description (Chinese)

Agiloft是美国Agiloft公司的一个合同管理平台。 Agiloft存在安全漏洞，该漏洞源于通过不安全的HTTP连接下载关键系统包，可能导致中间人攻击。

Description (English)

Agiloft is a contract management platform for Agiloft in the United States. There is a security loophole in Agiloft, which stems from the possibility that the downloading of key system packages via unsafe HTTP connections may lead to attacks by intermediaries.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Agiloft

Published

2025-08-26

Last Modified

2026-02-24

References

https://www.cve.org/CVERecord?id=CVE-2025-35115 https://wiki.agiloft.com/display/HELP/What%27s+New%3A+CVE+Resolution https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-239-01.json https://nvd.nist.gov/vuln/detail/CVE-2025-35115