CNNVD-202512-3132 Information

CNNVD ID

CNNVD-202512-3132

Related CVE

CVE-2025-14758

• CNNVD Published: 2025-12-16

Description (Chinese)

YAOOK Operator是德国YAOOK公司的一个部署和管理OpenStack云服务的自动化控制组件。 YAOOK Operator存在安全漏洞，该漏洞源于复制安全配置不当，可能导致数据库内容泄露。

Description (English)

YAOOK Operator is an automated control component for the deployment and management of OpenStack cloud services by YAOOK, Germany. YAOOK Operator has a security loophole, which stems from an inappropriate copying security configuration, which may lead to the disclosure of the database contents.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

YAOOK

Published

2025-12-16

Last Modified

2026-02-24

References

https://gitlab.com/yaook/operator/-/issues/631