CNNVD-202510-4406 Information
CNNVD ID
CNNVD-202510-4406
Related CVE
- CNNVD Published: 2025-10-31
Description (Chinese)
LogicalDOC Community Edition是意大利LogicalDOC公司的一个文档系统。 LogicalDOC Community Edition 9.2.1及之前版本存在安全漏洞,该漏洞源于文件/login.jsp中身份验证尝试限制不当,可能导致远程暴力破解攻击。
Description (English)
The LogicalDOC Commission is a filing system of LogicalDOC, Italy. There is a security loophole in the LogicalDOC Commission 9.2.1 and previous versions, which stems from inappropriate attempts at authentication in the document/login.jsp, which could lead to long-range violent breakdowns of the attack.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
LogicalDOC
Published
2025-10-31
Last Modified
2026-02-24
References
https://gist.github.com/thezeekhan/869aeb01bd981667c35dcac3e72c2bfa https://vuldb.com/?ctiid.330807 https://vuldb.com/?id.330807 https://vuldb.com/?submit.677172 https://access.redhat.com/security/cve/cve-2025-12547
Patch
https://www.logicaldoc.com/download-logicaldoc-community
Share on: