CNNVD-202511-3070 Information

CNNVD ID

CNNVD-202511-3070

Related CVE

CVE-2025-66432

• CNNVD Published: 2025-11-30

Description (Chinese)

Oxide Control Plane是Oxide Computer Company开源的一个控制台软件。 Oxide Control Plane 15版本至17版本和17.1之前版本存在安全漏洞，该漏洞源于API令牌可能在过期后继续使用。

Description (English)

Oxide Control Plane is an Oxide Control Company open-source console software. There is a security loophole between 15 and 17 versions of Oxford Plane and prior to 17.1, which stems from the possibility that the API token will continue to be used after expiry.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Oxide Computer Company

Published

2025-11-30

Last Modified

2026-02-24

References

https://oxide.computer/ https://docs.oxide.computer/security/advisories/20251117-1 https://github.com/oxidecomputer/omicron/compare/01bb875…ec069f0 https://access.redhat.com/security/cve/cve-2025-66432

Patch

https://github.com/oxidecomputer/omicron/tags