CNNVD-202511-1528 Information

CNNVD ID

CNNVD-202511-1528

Related CVE

CVE-2025-64752

• CNNVD Published: 2025-11-13

Description (Chinese)

Grist是Grist开源的一种现代关系电子表格。 Grist 1.7.7之前版本存在代码问题漏洞，该漏洞源于服务器端URL获取功能存在特权网络访问风险，可能导致攻击升级。

Description (English)

Krist is a modern relationship spreadsheet that is an open source for Glast. There was a code problem loophole in the previous version of Christ 1.7.7, which stemmed from the risk of privileged network access to the server-end URL access, which could lead to an escalation of the attack.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

Grist

Published

2025-11-13

Last Modified

2026-02-24

References

https://github.com/gristlabs/grist-core/releases/tag/v1.7.7 https://github.com/gristlabs/grist-core/security/advisories/GHSA-qh95-2qv8-pqx3 https://access.redhat.com/security/cve/cve-2025-64752

Patch

https://github.com/gristlabs/grist-core/releases