CNNVD-202512-2203 Information

CNNVD ID

CNNVD-202512-2203

Related CVE

CVE-2025-14523

• CNNVD Published: 2025-12-11

Description (Chinese)

libsoup是GNOME项目的一款GNOME的HTTP客户端/服务器库。 libsoup存在环境问题漏洞，该漏洞源于HTTP标头处理不当，可能导致请求夹带攻击、缓存投毒或绕过基于主机的访问控制。

Description (English)

Libsoup is the HTTP client/server library of the GNOME project. Libsoup has an environmental loophole, which stems from the inappropriate handling of HTTP markers, which may lead to requests for a belt attack, cache poisoning or circumventing mainframe-based access controls.

Hazard Level

Medium

Vulnerability Type

环境问题

Affected Vendor

GNOME

Published

2025-12-11

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-14523 https://bugzilla.redhat.com/show_bug.cgi?id=2421349