CNNVD-202509-713 Information

CNNVD ID

CNNVD-202509-713

Related CVE

CVE-2025-58366

• CNNVD Published: 2025-09-05

Description (Chinese)

Onyxia是InseeFrLab开源的一款网络应用程序，旨在成为多种开源后端技术之间的粘合剂。 Onyxia 4.8.0及之前版本存在安全漏洞，该漏洞源于凭证泄露，可能导致敏感信息暴露。

Description (English)

Onyxia is a web application of the InseeFrLab open source that is designed to be a glue between various open source back-end technologies. Onyxia 4.8.0 and previous versions had a security loophole, which stemmed from the disclosure of documents and could lead to the exposure of sensitive information.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

InseeFrLab

Published

2025-09-05

Last Modified

2026-02-24

References

https://github.com/InseeFrLab/onyxia-api/pull/613 https://github.com/InseeFrLab/onyxia-api/releases/tag/v4.9.0 https://github.com/InseeFrLab/onyxia/security/advisories/GHSA-m773-6vm8-8x6q https://access.redhat.com/security/cve/cve-2025-58366

Patch

https://github.com/InseeFrLab/onyxia/releases