CNNVD-202512-3230 Information
CNNVD ID
CNNVD-202512-3230
Related CVE
- CNNVD Published: 2025-12-17
Description (Chinese)
AVideo是World Wide Broadcast Network开源的一个广播网络创建工具。 AVideo 20.0之前版本存在安全漏洞,该漏洞源于多个公共API端点泄露绝对文件系统路径,可能暴露底层文件系统结构。
Description (English)
AVideo is an open-source radio network creation tool for the World Wide Broadcast Network. There was a security loophole in the pre-AVideo 20.0 version, which originated from multiple public API endpoints leaking the absolute file system path and could expose the bottom file system structure.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
World Wide Broadcast Network
Published
2025-12-17
Last Modified
2026-02-24
References
https://github.com/WWBN/AVideo/commit/dbe3e91c54 https://chocapikk.com/posts/2025/avideo-security-vulnerabilities/ https://www.vulncheck.com/advisories/avideo-system-path-disclosure-via-public-api https://github.com/WWBN/AVideo/commit/4a53ab2056 https://access.redhat.com/security/cve/cve-2025-34442
Patch
https://github.com/WWBN/AVideo
Share on: