CNNVD-202510-764 Information

CNNVD ID

CNNVD-202510-764

Related CVE

CVE-2025-11346

• CNNVD Published: 2025-10-06

Description (Chinese)

ILIAS是ILIAS开源的一套开源的学习管理系统。 ILIAS 8.23及之前版本、9.13及之前版本和10.1及之前版本存在代码问题漏洞，该漏洞源于对Base64 Decoding Handler组件中参数f_settings的反序列化操作不当，可能导致远程代码执行。

Description (English)

ILIAS is an open-source learning management system for ILIAS open sources. ILIAS 8.23 and previous versions, 9.13 and previous versions and 10.1 and previous versions have a code problem loophole, which stems from the inappropriate inverse sequenceization of the parameter f settings in the Base64 Decoding Handler component, which may lead to remote code execution.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

ILIAS

Published

2025-10-06

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.327231 https://vuldb.com/?id.327231 https://vuldb.com/?submit.664892 https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2113 https://access.redhat.com/security/cve/cve-2025-11346