CNNVD-202508-628 Information

CNNVD ID

CNNVD-202508-628

Related CVE

CVE-2025-51054

• CNNVD Published: 2025-08-06

Description (Chinese)

Bottinelli Informatical Vedo Suite是意大利Bottinelli Informatica公司的一款面向纺织与设计行业的企业软件套件。 Bottinelli Informatical Vedo Suite 2024.17版本存在安全漏洞，该漏洞源于访问控制不当，可能导致未经身份验证的攻击者获取高权限JWT令牌。

Description (English)

Bottinelli Informatical Vedo Suite is an enterprise software package for the textile and design industries of Bottinelli Informatica, Italy. There is a security loophole in version 2024.17 of Bottinelli Informatical Vedo Suite, which stems from inadequate access controls, which may lead to unauthorized assailants gaining high-authority JWT badges.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Bottinelli Informatica

Published

2025-08-06

Last Modified

2026-02-24

References

https://github.com/jacopoaugelli/vedo-suite-exploits http://bottinelli.com https://access.redhat.com/security/cve/cve-2025-51054

Patch

https://www.bottinelliinformatica.it/