CNNVD-202509-1131 Information
Sep 09, 2025
cve
CNNVD ID
CNNVD-202509-1131
Related CVE
- CNNVD Published: 2025-09-09
Description (Chinese)
OpsMill Infrahub是法国OpsMill公司的一个基础设施资源管理平台。 OpsMill Infrahub 1.3.9之前版本和1.4.5之前版本存在安全漏洞,该漏洞源于认证逻辑错误,可能导致已删除或过期的API令牌仍有效。
Description (English)
OpsMill Infrahub is an infrastructure resource management platform for OpsMill in France. There is a security loophole in previous versions of OpsMill Infrahub 1.3.9 and before 1.4.5, which stems from a logical error in authentication, which may lead to the continued validity of deleted or expired API tokens.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
OpsMill
Published
2025-09-09
Last Modified
2026-02-24
References
https://github.com/opsmill/infrahub/security/advisories/GHSA-v2p7-4pv4-3wwh https://access.redhat.com/security/cve/cve-2025-59036
Patch
https://github.com/opsmill/infrahub/releases
Share on: