CNNVD-202510-3405 Information
CNNVD ID
CNNVD-202510-3405
Related CVE
- CNNVD Published: 2025-10-24
Description (Chinese)
Naviga Global GN4 Publishing System是美国Naviga Global公司的一个内容管理与发布系统。 Naviga Global GN4 Publishing System 2.6之前版本存在安全漏洞,该漏洞源于API中存在不安全的直接对象引用,可能导致账户接管。
Description (English)
Naviga Global GN4 Publishing Systems is a content management and distribution system for Naviga Global in the United States. The previous version of Naviga Global GN4 Publicizing System 2.6 had a security loophole, which stemmed from the presence of unsafe direct reference in API, which could lead to the account being taken over.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Naviga Global
Published
2025-10-24
Last Modified
2026-02-24
References
https://www.miles33.com/news/news/5955/naviga–miles-33–acquisition.html https://www.miles33.com/section/14/gn4 https://www.vulncheck.com/advisories/gn4-publishing-system-idor-information-disclosure https://nne.navigacloud.com/GN4Help/gn4_introduction_to_gn4.htm https://access.redhat.com/security/cve/cve-2025-34293
Patch
https://www.miles33.com/section/14/gn4
Share on: