CNNVD-202512-5091 Information
Dec 30, 2025
cve
CNNVD ID
CNNVD-202512-5091
Related CVE
- CNNVD Published: 2025-12-30
Description (Chinese)
pangolin是Pangolin开源的一个代理软件。 pangolin 1.6.2及之前版本存在安全漏洞,该漏洞源于不安全的默认配置,可能导致攻击者绕过身份验证访问Pangolin资源。
Description (English)
Pangolin is an agent for Pangolin open source. There is a security loophole in pangolin 1.6.2 and earlier versions, which stems from unsafe default configurations, which may lead the attackers to bypass identification access to Pangolin resources.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Pangolin
Published
2025-12-30
Last Modified
2026-02-24
References
https://gist.github.com/mrdgef/ef6fa41d69c0457874414c163d7d7d75 https://github.com/fosrl/pangolin https://access.redhat.com/security/cve/cve-2025-56332
Patch
https://github.com/fosrl/pangolin/releases
Share on: