CNNVD-202509-2697 Information

CNNVD ID

CNNVD-202509-2697

Related CVE

CVE-2025-35436

• CNNVD Published: 2025-09-17

Description (Chinese)

thorium是mjcarson个人开发者的一个可扩展的文件分析和数据生成平台。 thorium存在安全漏洞，该漏洞源于使用unwrap处理错误，可能导致未经验证的远程攻击者通过特制电子邮件地址或响应导致崩溃。

Description (English)

horium is a scalable platform for document analysis and data generation for mjcarson personal developers. There is a security loophole in the horium, which stems from the use of unwrap processing errors that could lead to the collapse of an uncertified remote attacker through a specific e-mail address or response.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-09-17

Last Modified

2026-02-24

References

https://github.com/mjcarson/thorium/commit/6a65a2711fb2387e8c3eacebc774053741bf5aeb https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-259-01.json https://www.cve.org/CVERecord?id=CVE-2025-35436

Patch

https://github.com/cisagov/thorium/releases