CNNVD-202511-3044 Information
Nov 29, 2025
cve
CNNVD ID
CNNVD-202511-3044
Related CVE
- CNNVD Published: 2025-11-29
Description (Chinese)
Kiteworks Mft是美国Kiteworks公司的一个安全管理内部和外部数据传输的软件。 Kiteworks Mft 9.1.0之前版本存在安全漏洞,该漏洞源于角色和权限定义不当,可能导致权限提升。
Description (English)
Kiteworks Mft is a software for the secure management of internal and external data transmissions by the United States company Kiteworks. There was a security loophole in the pre-Kiteworks Mft 9.1.0 version, which stemmed from an inappropriate definition of roles and privileges, which could lead to enhanced privileges.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Kiteworks
Published
2025-11-29
Last Modified
2026-02-24
References
https://github.com/kiteworks/security-advisories/security/advisories/GHSA-gjq3-8v6p-2h6h https://access.redhat.com/security/cve/cve-2025-53900
Patch
https://www.kiteworks.com/platform/simple/managed-file-transfer/
Share on: