CNNVD-202512-953 Information
Dec 08, 2025
cve
CNNVD ID
CNNVD-202512-953
Related CVE
- CNNVD Published: 2025-12-08
Description (Chinese)
Memos是Memos开源的一个具有知识管理和社交功能的开源自托管备忘录中心。 Memos v0.25.2版本存在安全漏洞,该漏洞源于访问控制不当,可能导致低权限攻击者修改或删除其他用户的附件。
Description (English)
Memos is an open-source Memos centre with knowledge management and socialization functions. Release Memos v. 0.25.2 contains a security loophole, which stems from inadequate access controls and may lead to the modification or deletion of annexes from other users by low-Authorizer attackers.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Memos
Published
2025-12-08
Last Modified
2026-02-24
References
http://memos.com http://usememos.com https://github.com/usememos/memos/pull/5217 https://herolab.usd.de/security-advisories/usd-2025-0059/ https://access.redhat.com/security/cve/cve-2025-65798
Patch
https://github.com/usememos/memos/releases
Share on: