CNNVD-202509-2699 Information
CNNVD ID
CNNVD-202509-2699
Related CVE
- CNNVD Published: 2025-09-17
Description (Chinese)
CISA Thorium是美国网络安全与基础设施安全局(CISA)政府部门的一个高度可扩展的分布式恶意软件分析和数据生成框架。 CISA Thorium 1.1.2之前版本存在安全漏洞,该漏洞源于未验证Elasticsearch的TLS证书,可能导致未经验证的攻击者冒充Elasticsearch服务。
Description (English)
CISA Thorium is a highly scalable, distributed malware analysis and data generation framework for the United States Cyber Security and Infrastructure Security Agency (CISA) government departments. The previous version of CISA Thorium 1.1.2 had a security loophole, which originated from the unverified TLS certificate of Elasticsearch, and could lead to uncertified attackers impersonating Elasticsearch services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Cisofy
Published
2025-09-17
Last Modified
2026-02-24
References
https://github.com/cisagov/thorium/blob/main/api/src/models/backends/setup/elastic_setup.rs#L36-L43 https://github.com/cisagov/thorium/releases/tag/1.1.2 https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-259-01.json https://www.cve.org/CVERecord?id=CVE-2025-35434
Patch
https://github.com/cisagov/thorium/releases
Share on: