CNNVD-202512-1367 Information

CNNVD ID

CNNVD-202512-1367

Related CVE

CVE-2025-66565

• CNNVD Published: 2025-12-09

Description (Chinese)

Fiber Utils是Fiber开源的一个通用函数库。 Fiber Utils 2.0.0-rc.3及之前版本存在安全特征问题漏洞，该漏洞源于随机数生成器失败时返回可预测UUID，可能导致安全操作被破坏。

Description (English)

Fiber Utils is a common function library of Fiber open sources. Fiber Utils 2.0-rc.3 and previous versions had a security feature loophole, which stemmed from the return of a predictable UUID when the random number generator failed and could lead to security operations being compromised.

Hazard Level

High

Vulnerability Type

安全特征问题

Affected Vendor

Fiber

Published

2025-12-09

Last Modified

2026-02-24

References

https://github.com/gofiber/utils/commit/6c6cf047032b9c8dff43d29f990b4b10e9b02d47 https://github.com/gofiber/utils/security/advisories/GHSA-m98w-cqp3-qcqr