CNNVD-202509-198 Information

CNNVD ID

CNNVD-202509-198

Related CVE

CVE-2024-12973

• CNNVD Published: 2025-09-02

Description (Chinese)

Akinsoft OctoCloud是土耳其Akinsoft公司的一个具有管理财务交易、记录收据和存货、开具发票以及生成报告功能的 在线平台。 Akinsoft OctoCloud s1.09.01至v1.11.01之前版本存在访问控制错误漏洞，该漏洞源于来源验证错误，可能导致HTTP响应拆分。

Description (English)

Akinsoft OctoClaud is an online platform of Akinsoft, Turkey, that manages financial transactions, records receipts and inventories, issues invoices and generates reports. Prior to Akinsoft OctoClaud s1.09.01 to v1.11.01, there was a bug in access control, which originated from a source validation error that could lead to HTTP responding to splits.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

Akinsoft

Published

2025-09-02

Last Modified

2026-02-24

References

https://www.usom.gov.tr/bildirim/tr-25-0203 https://access.redhat.com/security/cve/cve-2024-12973 https://nvd.nist.gov/vuln/detail/CVE-2024-12973

Patch

https://octocloud.akinsoft.com.tr/en/