CNNVD-202508-888 Information
Aug 11, 2025
cve
CNNVD ID
CNNVD-202508-888
Related CVE
- CNNVD Published: 2025-08-11
Description (Chinese)
YugabyteDB是美国Yugabyte公司的一款用于云原生应用程序的高性能事务性分布式 SQL 数据库。 YugabyteDB存在安全漏洞,该漏洞源于YCQL查询处理存在空指针取消引用,可能导致拒绝服务。
Description (English)
YugabyteDB is a high-performance service distribution SQL database for cloud-based applications from Yugabyte, United States. There is a security loophole in YugabyteDB, which is the result of an empty pointer de-reference for YCQL query processing, which may lead to the denial of services.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
Yugabyte
Published
2025-08-11
Last Modified
2026-02-24
References
https://docs.yugabyte.com/preview/secure/vulnerability-disclosure-policy/ https://access.redhat.com/security/cve/cve-2025-8865
Patch
https://github.com/yugabyte/yugabyte-db/releases
Share on: