CNNVD-202509-195 Information

Sep 02, 2025 cve

CNNVD ID

CNNVD-202509-195

CVE-2025-0640

CNNVD Published: 2025-09-02

Description (Chinese)

Akinsoft OctoCloud是土耳其Akinsoft公司的一个具有管理财务交易、记录收据和存货、开具发票以及生成报告功能的在线平台。 Akinsoft OctoCloud s1.09.02至v1.11.01之前版本存在安全漏洞，该漏洞源于用户控制密钥绕过授权，可能导致资源泄露。

Description (English)

Akinsoft OctoClaud is an online platform of Akinsoft, Turkey, that manages financial transactions, records receipts and inventories, issues invoices and generates reports. There was a security loophole in previous versions of Akinsoft OctoClaud s1.09.02 to v1.11.01, which stemmed from the circumvention of the authorization by the user control key, which could lead to the release of resources.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Akinsoft

Published

2025-09-02

Last Modified

2026-02-24

References

https://www.usom.gov.tr/bildirim/tr-25-0203 https://nvd.nist.gov/vuln/detail/CVE-2025-0640 https://access.redhat.com/security/cve/cve-2025-0640

Patch

https://octocloud.akinsoft.com.tr/en/

Share on: