CNNVD-202512-4751 Information

CNNVD ID

CNNVD-202512-4751

Related CVE

CVE-2025-68922

• CNNVD Published: 2025-12-25

Description (Chinese)

OpenOps是OpenOps开源的一个自动化平台。 OpenOps 0.6.11之前版本存在操作系统命令注入漏洞，该漏洞源于Terraform块存在远程代码执行。

Description (English)

OpenOps is an automated platform for OpenOps open source. Before OpenOps 0.6.11, there was an operational system command-injection loophole, which originated from the remote code execution of the Terraform block.

Hazard Level

Low

Vulnerability Type

操作系统命令注入

Affected Vendor

OpenOps

Published

2025-12-25

Last Modified

2026-02-24

References

https://github.com/openops-cloud/openops/pull/1767 https://github.com/openops-cloud/openops/releases/tag/0.6.11 https://github.com/openops-cloud/openops/compare/0.6.10…0.6.11 https://linear.app/openops/issue/OPS-3254 https://access.redhat.com/security/cve/cve-2025-68922

Patch

https://github.com/openops-cloud/openops/releases