CNNVD-202512-3142 Information

CNNVD ID

CNNVD-202512-3142

Related CVE

CVE-2025-66029

• CNNVD Published: 2025-12-17

Description (Chinese)

Open OnDemand是Ohio Supercomputer Center开源的一个通过Web实现开放式交互式HPC的软件。 Open OnDemand 4.0.8及之前版本存在安全漏洞，该漏洞源于Apache代理将敏感标头传递给源服务器，可能导致信息泄露。

Description (English)

Open OnDemand is an open interactive HPC software from the Open Supercomputer Center open source through Web. Open OnDemand 4.0.8 and previous versions contain a security loophole resulting from the transfer of sensitive markers by Apache agents to the source server, which could lead to the disclosure of information.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Ohio Supercomputer Center

Published

2025-12-17

Last Modified

2026-02-24

References

https://github.com/OSC/ondemand/security/advisories/GHSA-2cwp-8g29-9q32 https://access.redhat.com/security/cve/cve-2025-66029