CNNVD-202512-1349 Information

CNNVD ID

CNNVD-202512-1349

Related CVE

CVE-2025-67487

• CNNVD Published: 2025-12-09

Description (Chinese)

Static Web Server是德国Static Web Server公司的一个静态 Web 服务器。 Static Web Server 2.40.0及之前版本存在安全漏洞，该漏洞源于符号链接处理不当，可能导致目录遍历攻击。

Description (English)

Static Web Server is a static Web server of the German company Static Web Server. There is a security loophole in Static Web Server 2.40.0 and earlier versions, which stems from the mishandling of symbol links, which could lead to an attack on the catalogue.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Static Web Server

Published

2025-12-09

Last Modified

2026-02-24

References

https://github.com/static-web-server/static-web-server/commit/308f0d26ceb9c2c8bd219315d0f53914763357f2 https://github.com/static-web-server/static-web-server/security/advisories/GHSA-459f-x8vq-xjjm

Patch

https://static-web-server.net/