CNNVD-202601-1185 Information
Jan 07, 2026
cve
CNNVD ID
CNNVD-202601-1185
Related CVE
- CNNVD Published: 2026-01-07
Description (Chinese)
Knowage是意大利Knowage公司的一套用于在传统资源和大数据系统上进行现代业务分析的开源套件。 Knowage 8.1.37之前版本存在代码问题漏洞,该漏洞源于存在盲服务器端请求伪造,可能导致攻击者扫描内部网络。
Description (English)
Knowage is an open source package for modern business analysis on traditional resources and large data systems of Knowage Italy. The pre-Knowage 8.1.37 version had a code gap, which stemmed from the existence of blind server requests for forgery, which could lead to the attackers scanning the internal network.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
Knowage
Published
2026-01-07
Last Modified
2026-02-24
References
https://github.com/KnowageLabs/Knowage-Server/security/advisories/GHSA-m6x8-wh9v-6jxp
Patch
https://github.com/KnowageLabs/Knowage-Server/releases
Share on: