CNNVD-202512-952 Information

CNNVD ID

CNNVD-202512-952

Related CVE

CVE-2025-65796

• CNNVD Published: 2025-12-08

Description (Chinese)

Memos是Memos开源的一个具有知识管理和社交功能的开源自托管备忘录中心。 Memos v0.25.2版本存在安全漏洞，该漏洞源于访问控制不当，可能导致低权限用户任意删除其他用户的Memos反应。

Description (English)

Memos is an open-source Memos centre with knowledge management and socialization functions. Release Memos v. 0.25.2 contains a security loophole, which stems from inadequate access controls and may lead to the arbitrary removal of Memos reactions from other users by users with low permission.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Memos

Published

2025-12-08

Last Modified

2026-02-24

References

http://memos.com http://usememos.com https://github.com/usememos/memos/pull/5217 https://herolab.usd.de/security-advisories/usd-2025-0060/ https://access.redhat.com/security/cve/cve-2025-65796

Patch

https://github.com/usememos/memos/releases