CNNVD-202512-637 Information
Dec 05, 2025
cve
CNNVD ID
CNNVD-202512-637
Related CVE
- CNNVD Published: 2025-12-05
Description (Chinese)
Google Apigee hybrid Javacallout policy是美国谷歌(Google)公司的一个下一代API管理平台。 Google Apigee hybrid Javacallout policy存在安全漏洞,该漏洞源于JavaCallout策略允许注入恶意对象,可能导致远程代码执行。
Description (English)
Google Apigee Hybrid Javacallout policy is a next-generation API management platform for Google. Google Apigee hybrid Javacallout policy has a security loophole, which stems from the JavaCallout strategy, which allows the injection of malicious objects, which may lead to remote code implementation.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
谷歌
Published
2025-12-05
Last Modified
2026-02-24
References
https://docs.cloud.google.com/apigee/docs/hybrid/release-notes#March_01_2025 https://access.redhat.com/security/cve/cve-2025-13426
Patch
https://cloud.google.com/apigee?hl=zh_cn
Share on: