CNNVD-202509-4443 Information

CNNVD ID

CNNVD-202509-4443

Related CVE

CVE-2025-56132

• CNNVD Published: 2025-09-30

Description (Chinese)

Liquidfiles是美国Liquidfiles公司的一个用于公司和组织的大型安全文件传输和共享的存储服务。 Liquidfiles 4.2之前版本存在安全漏洞，该漏洞源于密码重置功能返回可区分响应，可能导致用户枚举攻击。

Description (English)

Liquidfiles is a large, secure file transfer and shared storage service for companies and organizations of the United States company Liquidfiles. There was a security loophole in the previous version of Liquidfiles 4.2, which stemmed from the reshuffle of passwords returning to a differentiated response, which could lead to a user countdown.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Liquidfiles

Published

2025-09-30

Last Modified

2026-02-24

References

https://docs.liquidfiles.com/release_notes/version_4-2-x.html https://www.liquidfiles.com/updates/v4.2.html

Patch

https://www.liquidfiles.com/updates/v4.2.html