CNNVD-202512-2656 Information

CNNVD ID

CNNVD-202512-2656

Related CVE

CVE-2025-14148

• CNNVD Published: 2025-12-15

Description (Chinese)

IBM DevOps Deploy是美国国际商业机器（IBM）公司的一种应用程序发布解决方案。标准化和简化在开发周期中将软件组件部署到每个环境的过程。 IBM DevOps Deploy 8.1版本至8.1.2.3版本存在安全漏洞，该漏洞源于LLM API令牌恢复不当，可能导致敏感信息泄露。

Description (English)

IBM DevOps Deploy is an application release solution for IBM. Standardization and simplification of the deployment of software components to each environment during the development cycle. Security loopholes exist in versions 8.1 to 8.1.3.3 of IBM DevOps Deploy, which stem from the improper recovery of LLM API tokens, which may lead to the disclosure of sensitive information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

国际商业机器

Published

2025-12-15

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7254663 https://access.redhat.com/security/cve/cve-2025-14148

Patch

https://www.ibm.com/support/pages/node/7254663