CNNVD-202508-3564 Information

CNNVD ID

CNNVD-202508-3564

Related CVE

CVE-2025-55202

• CNNVD Published: 2025-08-29

Description (Chinese)

Opencast是Opencast组织的一款用于大规模自动视频捕获，管理和分发的直播视频支撑软件。 Opencast 18.0版本和17.7之前版本存在安全漏洞，该漏洞源于UI配置模块路径遍历防护不足，可能导致访问其他文件夹文件。

Description (English)

Opencast is a live video support software for large-scale automatic video capture, managed and distributed by Opencast. Opencast version 18.0 and previous version 17.7 have a security loophole, which stems from the inadequate protection of the UI configuration module path and may lead to access to other folder files.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Opencast

Published

2025-08-29

Last Modified

2026-02-24

References

https://github.com/opencast/opencast/security/advisories/GHSA-hq8m-v68g-8cf8 https://github.com/opencast/opencast/pull/6979 https://github.com/opencast/opencast/commit/e2cc65d6fbe052ebb71d9f6b583bb54b181af009 https://access.redhat.com/security/cve/cve-2025-55202 https://nvd.nist.gov/vuln/detail/CVE-2025-55202

Patch

https://opencast.org/