CNNVD-202512-1562 Information

CNNVD ID

CNNVD-202512-1562

Related CVE

CVE-2025-14311

• CNNVD Published: 2025-12-09

Description (Chinese)

JMRI是JMRI开源的一个模型铁路数字命令与控制软件。 JMRI 5.13.3之前版本存在安全漏洞，该漏洞源于容易受到路径遍历攻击。

Description (English)

JMRI is a model railway digital command and control software from JMRI open source. The previous version of JMRI 5.13.3 had a security loophole, which stemmed from its vulnerability to attacks on all routes.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

JMRI

Published

2025-12-09

Last Modified

2026-02-24

References

https://github.com/JMRI/JMRI/pull/14340 https://access.redhat.com/security/cve/cve-2025-14311

Patch

https://github.com/JMRI/JMRI/releases