CNNVD-202510-348 Information
Oct 02, 2025
cve
CNNVD ID
CNNVD-202510-348
Related CVE
- CNNVD Published: 2025-10-02
Description (Chinese)
GTT GROUP OpenSIAC是美国GTT GROUP公司的一个数字服务管理平台。 GTT GROUP OpenSIAC存在授权问题漏洞,该漏洞源于身份验证不当,可能导致攻击者冒充使用Cl@ve身份验证方法的用户。
Description (English)
GTT GROUP OpenSIAC is a digital service management platform for GTT GROUP in the United States. GTT GROUP OpenSIAC had a mandate gap, which stemmed from inappropriate identification and could lead to the attacker impersonating a user using Cl@ve authentication.
Hazard Level
High
Vulnerability Type
授权问题
Affected Vendor
GTT GROUP
Published
2025-10-02
Last Modified
2026-02-24
References
https://www.incibe.es/en/incibe-cert/notices/aviso/incorrect-authentication-gtts-group-opensiac
Patch
https://www.gtt.es/gadd-gobierno-digital/
Share on: