CNNVD-202510-3061 Information

CNNVD ID

CNNVD-202510-3061

Related CVE

CVE-2025-61035

• CNNVD Published: 2025-10-22

Description (Chinese)

seffaflik是nurisensoy个人开发者的一个Python库。 seffaflik 0.0.9及之前版本存在安全漏洞，该漏洞源于.kimlik文件和.seffaflik文件默认权限设置不当且缺少符号链接检查，可能导致信息泄露和拒绝服务。

Description (English)

Seffaflik is a Python library of nurisensoy personal developers. There is a security loophole in suffaflik 0.0.9 and earlier versions, which stems from the inappropriate setting of the default permissions for .kimlik and .seffaflik files and the lack of a symbol link check, which may lead to the leaking of information and the denial of services.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-10-22

Last Modified

2026-02-24

References

https://github.com/nurisensoy/seffaflik https://github.com/nurisensoy/seffaflik/issues/3 https://pypi.org/project/seffaflik/ https://access.redhat.com/security/cve/cve-2025-61035

Patch

https://github.com/nurisensoy/seffaflik/releases