CNNVD-202511-3023 Information
CNNVD ID
CNNVD-202511-3023
Related CVE
- CNNVD Published: 2025-11-28
Description (Chinese)
Cerebrate是Cerebrate开源的一个开源平台。旨在充当受信任的联系信息提供者和其他安全工具的互连协调器。 Cerebrate 1.30之前版本存在安全漏洞,该漏洞源于非特权用户可能通过编辑请求提升权限。
Description (English)
Cerebrate is an open-source platform for the Cerebrate open source. An interconnector designed to serve as a trusted provider of contact information and other security tools. There was a security loophole in the pre-Cerebrate 1.30 version, which stemmed from the possibility that non-privileged users could enhance their privileges by editing requests.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Cerebrate
Published
2025-11-28
Last Modified
2026-02-24
References
https://github.com/cerebrate-project/cerebrate/commit/c9bfa90abc85d4a20a9cc2f282959b72bef829bb https://github.com/cerebrate-project/cerebrate/compare/v1.29…v1.30 https://vulnerability.circl.lu/api/vulnerability/gcve-1-2025-0017 https://access.redhat.com/security/cve/cve-2025-66385
Patch
https://www.cerebrate-project.org/
Share on: