CNNVD-202511-2324 Information

CNNVD ID

CNNVD-202511-2324

Related CVE

CVE-2025-12121

• CNNVD Published: 2025-11-20

Description (Chinese)

Lite XL是lite-xl开源的一个轻量级文本编辑器。 Lite XL 2.1.8及之前版本存在安全漏洞，该漏洞源于system.exec函数未清理shell命令构造，可能导致执行任意命令。

Description (English)

Lite XL is a lightweight text editor for the lite-xl open source. The Lite XL 2.1.8 and previous versions had a security loophole, which stemmed from the failure of the system.exec function to clean up the shell command structure, which could lead to the execution of arbitrary orders.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

lite-xl

Published

2025-11-20

Last Modified

2026-02-24

References

https://github.com/lite-xl/lite-xl/pull/2163 https://kb.cert.org/vuls/id/579478