CNNVD-202509-4446 Information

CNNVD ID

CNNVD-202509-4446

Related CVE

CVE-2025-56513

• CNNVD Published: 2025-09-30

Description (Chinese)

NiceHash QuickMiner是NiceHash.com开源的一个加密货币矿工软件。 NiceHash QuickMiner 6.12.0版本存在安全漏洞，该漏洞源于通过HTTP执行软件更新且未验证数字签名或哈希检查，可能导致远程代码执行。

Description (English)

NiceHash QuickMiner is an encrypted currency miner from NiceHash.com. NiceHash QuickMiner version 6.11.2.0 contains a security loophole that results from the implementation of software updates through HTTP and the non-validation of digital signatures or Hashi checks, which may result in remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

NiceHash.com

Published

2025-09-30

Last Modified

2026-02-24

References

https://medium.com/@princep49036142/hijacking-the-miner-how-nicehashminers-auto-update-pipeline-enables-zero-click-rce-ed6a36b6769b https://medium.com/@princep49036142/hijacking-the-miner-zero-click-rce-in-nicehash-quickminer-cve-2025-56513-4a7190295e6c