CNNVD-202601-1481 Information
Jan 08, 2026
cve
CNNVD ID
CNNVD-202601-1481
Related CVE
- CNNVD Published: 2026-01-08
Description (Chinese)
NiceGUI是NiceGUI开源的一个易于使用、基于 Python 的 UI 框架。 NiceGUI v2.10.0版本至3.4.1版本存在安全漏洞,该漏洞源于未经验证的攻击者可耗尽Redis连接,可能导致服务降级。
Description (English)
NiceGUI is an easy-to-use, Python-based UI framework for NiceGUI open source. NiceGUI v2.10.0 to 3.4.1 contains a security loophole, which stems from the fact that uncertified assailants run out of Redis connections and may lead to a downgrading of services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
NiceGUI
Published
2026-01-08
Last Modified
2026-02-24
References
https://github.com/zauberzeug/nicegui/security/advisories/GHSA-mp55-g7pj-rvm2 https://github.com/zauberzeug/nicegui/releases/tag/v3.5.0 https://github.com/zauberzeug/nicegui/commit/6c52eb2c90c4b67387c025b29646b4bc1578eb83 https://access.redhat.com/security/cve/cve-2026-21874
Patch
https://github.com/zauberzeug/nicegui/releases
Share on: