CNNVD-202512-561 Information

CNNVD ID

CNNVD-202512-561

Related CVE

CVE-2025-54305

• CNNVD Published: 2025-12-04

Description (Chinese)

Thermo Fisher Torrent Suite Django application是美国Thermo Fisher公司的一个核心软件组件。 Thermo Fisher Torrent Suite Django application 5.18.1版本存在安全漏洞，该漏洞源于LocalhostAuthMiddleware中间件对特定IP地址进行自动认证，可能导致本地用户绕过身份验证。

Description (English)

Thermo Fisher Torrent Suite Django application is a core software component of the United States company Hermo Fisher. There is a security loophole in version 5.18.1 of Thermo Fisher Torrent Suite Django application, which originates from the automated authentication of a specific IP address by the LocalhostAuth Middleware intermediate, which may result in local users bypassing identification.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Thermo Fisher

Published

2025-12-04

Last Modified

2026-02-24

References

https://assets.thermofisher.com/TFS-Assets/LSG/manuals/MAN0026163-Torrent-Suite-5.18-UG.pdf https://documents.thermofisher.com/TFS-Assets/CORP/Product-Guides/Ion_OneTouch_2_and_Torrent_Suite_Software.pdf https://www.thermofisher.com/us/en/home/life-science/sequencing/next-generation-sequencing/ion-torrent-next-generation-sequencing-workflow/ion-torrent-next-generation-sequencing-data-analysis-workflow/ion-torrent-suite-software.html https://access.redhat.com/security/cve/cve-2025-54305