CNNVD-202512-2365 Information

CNNVD ID

CNNVD-202512-2365

Related CVE

CVE-2025-58130

• CNNVD Published: 2025-12-12

Description (Chinese)

Apache Fineract是美国阿帕奇（Apache）基金会的一套开源数字金融服务平台。该平台能够为用户提供数据管理、贷款和储蓄投资组合管理以及实时财务数据等功能。 Apache Fineract 1.11.0及之前版本存在安全漏洞，该漏洞源于凭据保护不足。

Description (English)

Apache Fineract is an open-source digital financial services platform for the Apache Foundation in the United States. The platform provides users with functionality such as data management, portfolio management for loans and savings and real-time financial data. There is a security loophole in Apache Field 1.11.0 and earlier versions, which stems from inadequate evidence protection.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

阿帕奇

Published

2025-12-12

Last Modified

2026-02-24

References

https://lists.apache.org/thread/d9zpkc86zk265523tfvbr8w7gyr6onoy http://www.openwall.com/lists/oss-security/2025/12/11/6

Patch

https://fineract.apache.org/