CNNVD-202511-812 Information

CNNVD ID

CNNVD-202511-812

Related CVE

CVE-2025-63690

• CNNVD Published: 2025-11-07

Description (Chinese)

pig是pig-mesh开源的一个权限管理系统。 pig 3.8.2及之前版本存在安全漏洞，该漏洞源于Quartz管理功能中可通过反射执行任意Java类，可能导致远程代码执行。

Description (English)

Pig is a rights management system for pig-mesh open source. There is a security loophole in the pig 3.8.2 and previous versions, which stems from the fact that any Java class in the Quartz management function can be performed by way of reflection, which may lead to remote code implementation.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

pig-mesh

Published

2025-11-07

Last Modified

2026-02-24

References

https://github.com/LockeTom/vulnerability/blob/main/md/pig_Remote_Code_Execution_Vulnerability.md https://github.com/pig-mesh/pig/issues/1199