CNNVD-202509-4399 Information

CNNVD ID

CNNVD-202509-4399

Related CVE

CVE-2025-55795

• CNNVD Published: 2025-09-29

Description (Chinese)

OpenML Frontend是OpenML开源的一个OpenML前端页面。 OpenML Frontend v2.0.20241110版本存在安全漏洞，该漏洞源于增量用户ID和电子邮件所有权验证不足，可能导致攻击者通过更新电子邮件地址锁定受害者账户。

Description (English)

OpenML Frontend is an OpenML frontend page. OpenML Frontend v. 2.0.202411110 has a security loophole, which stems from the inadequate verification of the incremental user ID and e-mail ownership, which may lead the assailant to lock the victim ’ s account by updating the e-mail address.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

OpenML

Published

2025-09-29

Last Modified

2026-02-24

References

https://github.com/openml https://github.com/openml/openml.org https://github.com/openml/openml.org/security/advisories/GHSA-87c5-mc8v-xf7r https://access.redhat.com/security/cve/cve-2025-55795