CNNVD-202601-011 Information

CNNVD ID

CNNVD-202601-011

Related CVE

CVE-2025-68273

• CNNVD Published: 2026-01-01

Description (Chinese)

Signal K Server是Signal K开源的一个船用中央服务器。 Signal K Server 2.19.0之前版本存在信息泄露漏洞，该漏洞源于未经验证的信息泄露，允许任何用户检索敏感系统信息，可能有助于进一步攻击的侦察。

Description (English)

Signal K Server is a central shipping server for Signal K Open Source. The leak of information in the previous version of Signal K Server 2.19.0, which originated from unverified leaks of information, allowed any user to retrieve sensitive system information and could contribute to further attack detection.

Hazard Level

High

Vulnerability Type

信息泄露

Affected Vendor

Signal K

Published

2026-01-01

Last Modified

2026-02-24

References

https://github.com/SignalK/signalk-server/releases/tag/v2.19.0 https://github.com/SignalK/signalk-server/security/advisories/GHSA-fpf5-w967-rr2m

Patch

https://github.com/SignalK/signalk-server/releases