CNNVD-202508-3287 Information

CNNVD ID

CNNVD-202508-3287

Related CVE

CVE-2025-58061

• CNNVD Published: 2025-08-28

Description (Chinese)

OpenEBS Local PV RawFile是OpenEBS开源的一个在Kubernetes中创建本地存储的软件。 OpenEBS Local PV RawFile 0.10.0之前版本存在信息泄露漏洞，该漏洞源于持久卷数据全局可读，可能导致非特权用户访问敏感数据。

Description (English)

OpenEBS Local PV RawFile is an OpenEBS open source software that creates local storage in Kubernetes. There was an information leakage gap in the previous version of OpenEBS Local PV RawFile 0.10.0, which stemmed from the global readability of long-duration volumes of data, which could lead to unprivileged users accessing sensitive data.

Hazard Level

High

Vulnerability Type

信息泄露

Affected Vendor

OpenEBS

Published

2025-08-28

Last Modified

2026-02-24

References

https://github.com/openebs/rawfile-localpv/security/advisories/GHSA-wh95-vw4r-xwx4 https://nvd.nist.gov/vuln/detail/CVE-2025-58061

Patch

https://openebs.io/