CNNVD-202511-2644 Information

CNNVD ID

CNNVD-202511-2644

Related CVE

CVE-2025-12978

• CNNVD Published: 2025-11-24

Description (Chinese)

Fluent Bit是Fluent开源的一款使用C语言编写的开源日志处理和分析系统。 Fluent Bit存在安全漏洞，该漏洞源于tag_key验证逻辑缺陷，可能导致记录重定向到非预期目标。

Description (English)

Fluent Bit is an open source log processing and analysis system in the C language of the Fluent Open Source. Fluent Bit has a security loophole, which stems from a test logic flaw in tag key, which may lead to a re-direction of records to unintended targets.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Fluent

Published

2025-11-24

Last Modified

2026-02-24

References

https://fluentbit.io/announcements/v4.1.0/ https://access.redhat.com/security/cve/cve-2025-12978

Patch

https://github.com/fluent/fluent-bit/releases