CNNVD-202509-1507 Information

CNNVD ID

CNNVD-202509-1507

Related CVE

CVE-2025-59034

• CNNVD Published: 2025-09-10

Description (Chinese)

Indico是Indico开源的一个功能丰富的事件管理系统。 Indico 3.3.8之前版本存在安全漏洞，该漏洞源于访问检查不当，可能导致未经授权检索其他用户的个人资料。

Description (English)

Indico is a functional, open-source event management system for Indico. The previous version of Indico 3.3.8 had a security gap, which stemmed from inadequate access checks and could lead to unauthorized access to the personal data of other users.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

工业光魔

Published

2025-09-10

Last Modified

2026-02-24

References

https://github.com/indico/indico/releases/tag/v3.3.8 https://github.com/indico/indico/security/advisories/GHSA-4269-mcfh-cp7q

Patch

https://github.com/indico/indico/releases