CNNVD-202512-2351 Information

CNNVD ID

CNNVD-202512-2351

Related CVE

CVE-2025-54947

• CNNVD Published: 2025-12-12

Description (Chinese)

Apache StreamPark是美国阿帕奇（Apache）基金会的一个流媒体应用程序开发框架。 Apache StreamPark 2.1.7之前版本存在安全漏洞，该漏洞源于使用硬编码加密密钥，可能导致信息泄露或未授权系统访问。

Description (English)

Apache StreamPark is a drift-media application development framework for the Apache Foundation in the United States. There was a security loophole in the previous version of ApachestreamPark 2.1.7 that originated from the use of hard-coded encryption keys, which could lead to information leaking or unauthorized system access.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

阿帕奇

Published

2025-12-12

Last Modified

2026-02-24

References

https://lists.apache.org/thread/kdntmzyzrco75x9q6mc6s8lty1fxmog1 http://www.openwall.com/lists/oss-security/2025/12/12/3

Patch

https://streampark.apache.org/