CNNVD-202510-1420 Information

CNNVD ID

CNNVD-202510-1420

Related CVE

CVE-2025-11581

• CNNVD Published: 2025-10-10

Description (Chinese)

PowerJob是PowerJob开源的一个开源分布式计算和作业调度框架，它允许开发人员在自己的应用程序中轻松调度任务。 PowerJob 5.1.2及之前版本存在安全漏洞，该漏洞源于文件/openApi/runJob中组件OpenAPIController缺少授权，可能导致远程攻击。

Description (English)

PowerJob is an open-source distributed computing and operating scheduling framework for PowerJob open source that allows developers to easily schedule tasks in their own applications. PowerJob 5.1.2 and previous versions contain a security loophole, which stems from the lack of authorization of the OpenApi/runJob component OpenAPIController, which could lead to a long-range attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PowerJob

Published

2025-10-10

Last Modified

2026-02-24

References

https://github.com/PowerJob/PowerJob/issues/1128 https://vuldb.com/?ctiid.327903 https://vuldb.com/?id.327903 https://vuldb.com/?submit.662558