CNNVD-202512-890 Information

CNNVD ID

CNNVD-202512-890

Related CVE

CVE-2025-65797

• CNNVD Published: 2025-12-08

Description (Chinese)

Memos是Memos开源的一个具有知识管理和社交功能的开源自托管备忘录中心。 Memos v0.25.2版本存在安全漏洞，该漏洞源于身份提供者服务访问控制不当，可能导致账户接管或拒绝服务。

Description (English)

Memos is an open-source Memos centre with knowledge management and socialization functions. Release Memos v. 0.25.2 contains a security loophole, which stems from inadequate access controls for identity provider services, which may result in accounts being taken over or denied services.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Memos

Published

2025-12-08

Last Modified

2026-02-24

References

http://memos.com http://usememos.com https://github.com/usememos/memos/pull/5217 https://herolab.usd.de/security-advisories/usd-2025-0057/ https://access.redhat.com/security/cve/cve-2025-65797

Patch

https://github.com/usememos/memos/releases