CNNVD-202509-1116 Information
Sep 08, 2025
cve
CNNVD ID
CNNVD-202509-1116
Related CVE
- CNNVD Published: 2025-09-08
Description (Chinese)
Datart是running-elephant开源的一代数据可视化开放平台。 Datart 1.0.0-rc3及之前版本存在安全漏洞,该漏洞源于datart/security/src/main/java/datart/security/util/AESUtil.java文件使用硬编码密钥。
Description (English)
Datart is an open-source, visualizing generation of data. Datat 1.0.0-rc3 and previous versions contain a security loophole, which stems from the use of hard-coded keys for the datart/security/src/main/java/datart/security/util/AESUtil.java files.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
running-elephant
Published
2025-09-08
Last Modified
2026-02-24
References
https://vuldb.com/?submit.644631 https://github.com/yjk12/Elephant-Datart-/tree/main https://vuldb.com/?id.323028 https://vuldb.com/?ctiid.323028 https://access.redhat.com/security/cve/cve-2025-10080
Share on: