CNNVD-202601-1450 Information

CNNVD ID

CNNVD-202601-1450

Related CVE

CVE-2025-67858

• CNNVD Published: 2026-01-08

Description (Chinese)

Foomuuri是Foobar Oy开源的一个防火墙配置生成和管理工具。 Foomuuri 0.31之前版本存在参数注入漏洞，该漏洞源于JSON配置中和不当，可能导致防火墙配置完整性受损。

Description (English)

Foomuri is a firewall configuration and management tool for Foobar Oy open source. The pre-Foomuri 0.31 version contains a gap in parameters, which stems from the misalignment of JSON ’ s configuration and may result in damage to the integrity of the firewall configuration.

Hazard Level

High

Vulnerability Type

参数注入

Affected Vendor

Foobar Oy

Published

2026-01-08

Last Modified

2026-02-24

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-67858 https://security.opensuse.org/2026/01/07/foomuuri-lack-of-dbus-authorization.html https://access.redhat.com/security/cve/cve-2025-67858

Patch

https://github.com/FoobarOy/foomuuri/releases