CNNVD-202509-037 Information
Sep 01, 2025
cve
CNNVD ID
CNNVD-202509-037
Related CVE
- CNNVD Published: 2025-09-01
Description (Chinese)
StreamVault是MochiMoon个人开发者的一个视频解析下载工具。 StreamVault 250822之前版本存在操作系统命令注入漏洞,该漏洞源于命令注入,可能导致服务器权限获取。
Description (English)
StraamVault is a video resolution download tool for MochiMoon personal developers. There was a gap in the operating system command before StraamVault 250822, which originated in the command injection and could lead to server access.
Hazard Level
Medium
Vulnerability Type
操作系统命令注入
Affected Vendor
个人开发者
Published
2025-09-01
Last Modified
2026-02-24
References
https://github.com/lemon8866/StreamVault/security/advisories/GHSA-qg4r-92hv-g9f4 https://github.com/lemon8866/StreamVault/commit/2e3f1f54b7d8a4e6389b640796866ac1108780ef https://access.redhat.com/security/cve/cve-2025-57799 https://nvd.nist.gov/vuln/detail/CVE-2025-57799
Patch
https://github.com/lemon8866/StreamVault/releases
Share on: