CNNVD-202508-631 Information

CNNVD ID

CNNVD-202508-631

Related CVE

CVE-2025-51058

• CNNVD Published: 2025-08-06

Description (Chinese)

Bottinelli Informatical Vedo Suite是意大利Bottinelli Informatica公司的一款面向纺织与设计行业的企业软件套件。 Bottinelli Informatical Vedo Suite 2024.17版本存在安全漏洞，该漏洞源于/api_vedo/video/preview端点可能导致服务端请求伪造。

Description (English)

Bottinelli Informatical Vedo Suite is an enterprise software package for the textile and design industries of Bottinelli Informatica, Italy. The Bottinelli Informatical Vedo Suite 2024.17 contains a security loophole that originates from/api vedo/video/preview endpoints that may result in the forgery of service-level requests.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Bottinelli Informatica

Published

2025-08-06

Last Modified

2026-02-24

References

https://github.com/jacopoaugelli/vedo-suite-exploits http://bottinelli.com https://access.redhat.com/security/cve/cve-2025-51058

Patch

https://www.bottinelliinformatica.it/