CNNVD-202510-2753 Information

CNNVD ID

CNNVD-202510-2753

Related CVE

CVE-2025-57521

• CNNVD Published: 2025-10-21

Description (Chinese)

BambuStudio是Bambu Lab开源的一个连接BambuLab和其他3D打印机的软件。 BambuStudio 2.1.1.52及之前版本存在安全漏洞，该漏洞源于应用程序启动时加载网络插件未验证数字签名或真实性，可能导致本地攻击者通过放置恶意组件执行任意代码。

Description (English)

BambuStudio is a software linking Bambu Lab open source to Bambulab and other 3D printers. BambuStudio 2.1.1.52 and previous versions had a security loophole, which stemmed from the fact that the loading of the network plugin at the time the application was launched did not verify a digital signature or authenticity, which could lead local assailants to enforce any code by placing a malicious component.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Bambu Lab

Published

2025-10-21

Last Modified

2026-02-24

References

http://bambu.com https://github.com/bambulab/BambuStudio/issues/7405 https://github.com/piuppi/Proof-of-Concepts/blob/main/Bambu%20Lab/Bambu%20Studio/README.md https://access.redhat.com/security/cve/cve-2025-57521