CNNVD-202510-2563 Information

CNNVD ID

CNNVD-202510-2563

Related CVE

CVE-2025-41390

• CNNVD Published: 2025-10-20

Description (Chinese)

TruffleHog是Truffle Security开源的一个工具。 TruffleHog 3.90.2版本存在安全漏洞，该漏洞源于特制存储库可能导致任意代码执行。

Description (English)

TraffleHog is a tool to open up Truffle Security. There is a security loophole in version 3.90.2 of TraffleHog, which originates from a specially designed repository that could lead to arbitrary code execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Truffle Security

Published

2025-10-20

Last Modified

2026-02-24

References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2243 https://trufflesecurity.com/blog/contributor-spotlight-adam-reiser-of-cisco-talos https://access.redhat.com/security/cve/cve-2025-41390

Patch

https://trufflesecurity.com/