CNNVD-202512-364 Information

CNNVD ID

CNNVD-202512-364

Related CVE

CVE-2025-65841

• CNNVD Published: 2025-12-03

Description (Chinese)

Plugin Alliance Aquarius Desktop是美国Plugin Alliance公司的一个音频插件管理软件。 Plugin Alliance Aquarius Desktop 3.0.069版本存在安全漏洞，该漏洞源于使用弱混淆方案存储用户认证凭据，可能导致账户完全接管。

Description (English)

Plugin Alliance Aquarus Desktop is an audio plugin management software for Plugin Alliance in the United States. There is a security loophole in version 3.0.069 of Plugin Alliance Aquarius Desktop, which stems from the use of weak confusion programmes to store user authentication documents, which may lead to the full account taking over.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Plugin Alliance

Published

2025-12-03

Last Modified

2026-02-24

References

http://acustica.com http://aquarius.com https://almightysec.com/account-takeover-via-weak-encryption/ https://access.redhat.com/security/cve/cve-2025-65841