CNNVD-202509-2788 Information
CNNVD ID
CNNVD-202509-2788
Related CVE
- CNNVD Published: 2025-09-17
Description (Chinese)
NeuVector是美国NeuVector公司的一套端到端的容器安全平台。该平台包括图像漏洞管理、准入控制和容器进程/文件系统保护等功能。 NeuVector存在安全漏洞,该漏洞源于执行带有密码参数的Java命令时,密码会出现在安全事件日志中,可能导致敏感信息泄露。
Description (English)
NeuVector is an end-to-end container safety platform for NeuVector in the United States. The platform includes features such as image gap management, access control and container process/document system protection. NeuVector had a security loophole, which originated in the execution of Java commands with password parameters, which would appear in the security event log and could lead to the disclosure of sensitive information.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
NeuVector
Published
2025-09-17
Last Modified
2026-02-24
References
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-54467 https://github.com/neuvector/neuvector/security/advisories/GHSA-w54x-xfxg-4gxq
Patch
https://github.com/neuvector/neuvector/releases
Share on: