CNNVD-202512-200 Information
Dec 02, 2025
cve
CNNVD ID
CNNVD-202512-200
Related CVE
- CNNVD Published: 2025-12-02
Description (Chinese)
Terminalfour是美国Terminalfour公司的一个面向高等教育的数字营销和网络内容管理平台。 Terminalfour 8版本至8.4.1.1版本存在安全漏洞,该漏洞源于userLevel参数授权检查不足,可能导致权限提升。
Description (English)
Terminalfour is a digital marketing and web content management platform for higher education at Terminalfour in the United States. There is a security loophole in versions Terminalfour 8 to 8.4.1.1, which stems from the inadequate authorization of the userLevel parameters, which may lead to an increase in authority.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Terminalfour
Published
2025-12-02
Last Modified
2026-02-24
References
https://docs.terminalfour.com/release-notes/security-notices/cve-2025-58386/ https://terminalfour.com https://access.redhat.com/security/cve/cve-2025-58386
Patch
https://docs.terminalfour.com/release-notes/
Share on: