CNNVD-202511-2871 Information
CNNVD ID
CNNVD-202511-2871
Related CVE
- CNNVD Published: 2025-11-26
Description (Chinese)
Opto 22 groov View Server是美国Opto 22公司的一个工业自动化远程监控软件。 Opto 22 groov View Server存在安全漏洞,该漏洞源于users端点返回所有用户及其API密钥,可能导致信息泄露。
Description (English)
Opto 22 Groov View Server is an industrial automated remote control software for Opto 22 in the United States. Opto 22 Groov View Server has a security loophole, which stems from the return of the user endpoint to all users and their API keys, which may lead to the disclosure of information.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
OPTO 22
Published
2025-11-26
Last Modified
2026-02-24
References
https://www.opto22.com/support/resources-tools/knowledgebase/kb91325 https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-329-04.json https://www.cisa.gov/news-events/ics-advisories/icsa-25-329-04 https://access.redhat.com/security/cve/cve-2025-13084
Patch
https://www.opto22.com/support/resources-tools/knowledgebase/kb91325
Share on: