CNNVD-202510-4244 Information

CNNVD ID

CNNVD-202510-4244

Related CVE

CVE-2025-54471

• CNNVD Published: 2025-10-30

Description (Chinese)

NeuVector是美国NeuVector公司的一套端到端的容器安全平台。该平台包括图像漏洞管理、准入控制和容器进程/文件系统保护等功能。 NeuVector存在安全漏洞，该漏洞源于使用了硬编码加密密钥，可能导致敏感配置数据泄露。

Description (English)

NeuVector is an end-to-end container safety platform for NeuVector in the United States. The platform includes features such as image gap management, access control and container process/document system protection. NeuVector has a security loophole, which stems from the use of a hard-coded encryption key, which may lead to the disclosure of sensitive configuration data.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

NeuVector

Published

2025-10-30

Last Modified

2026-02-24

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-54471 https://github.com/neuvector/neuvector/security/advisories/GHSA-h773-7gf7-9m2x

Patch

https://github.com/neuvector/neuvector/releases