CNNVD-202512-3736 Information

CNNVD ID

CNNVD-202512-3736

Related CVE

CVE-2025-67846

• CNNVD Published: 2025-12-19

Description (Chinese)

Mintlify是美国Mintlify公司的一个AI驱动的文档平台。 Mintlify 2025-11-15之前版本存在安全漏洞，该漏洞源于Deployment Infrastructure中可预测部署标识符，可能导致降级攻击。

Description (English)

Mintlifty is an AI-driven document platform for Mintlifty in the United States. Prior to Mintlifty 2025-11-15, there was a security loophole, which originated from the predictable deployment identifier in Deplace Infrastructure and could lead to a downgrade attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mintlify

Published

2025-12-19

Last Modified

2026-02-24

References

https://kibty.town/blog/mintlify/ https://news.ycombinator.com/item?id=46317098 https://www.mintlify.com/blog/working-with-security-researchers-november-2025 https://www.mintlify.com/docs/changelog https://access.redhat.com/security/cve/cve-2025-67846

Patch

https://www.mintlify.com/