CNNVD-202511-2189 Information

CNNVD ID

CNNVD-202511-2189

Related CVE

CVE-2025-13315

• CNNVD Published: 2025-11-19

Description (Chinese)

Lynx Twonky Server是美国Lynx公司的一个DLNA/UPnP媒体服务器。 Lynx Twonky Server 8.5.2版本存在安全漏洞，该漏洞源于访问控制缺陷，可能导致日志文件泄露和管理员凭据泄露。

Description (English)

Lynx Twonky Server is a DLNA/UPnP media server of Lynx, United States. There is a security loophole in version 8.5.2 of Lynx Twonky Server, which stems from access control deficiencies that may lead to the leaking of log files and the release of certificates from administrators.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Lynx

Published

2025-11-19

Last Modified

2026-02-24

References

https://www.rapid7.com/blog/post/cve-2025-13315-cve-2025-13316-critical-twonky-server-authentication-bypass-not-fixed/