CNNVD-202509-2698 Information

CNNVD ID

CNNVD-202509-2698

Related CVE

CVE-2025-35435

• CNNVD Published: 2025-09-17

Description (Chinese)

thorium是mjcarson个人开发者的一个可扩展的文件分析和数据生成平台。 thorium存在安全漏洞，该漏洞源于接受零值流分割大小并进行除法运算，可能导致远程认证攻击者使服务崩溃。

Description (English)

horium is a scalable platform for document analysis and data generation for mjcarson personal developers. There is a security loophole in the horium, which stems from the acceptance of zero-value flow splitting and decomposition, which could lead to a breakdown of services by remote authentication attackors.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-09-17

Last Modified

2026-02-24

References

https://github.com/cisagov/thorium/commit/7c94a0b9bc2dc55e0c307360452f348bac06820c https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-259-01.json https://www.cve.org/CVERecord?id=CVE-2025-CVE-2025-35435

Patch

https://github.com/cisagov/thorium/releases