CNNVD-202601-2279 Information

CNNVD ID

CNNVD-202601-2279

Related CVE

CVE-2025-55462

• CNNVD Published: 2026-01-13

Description (Chinese)

Eramba Community和Eramba Enterprise都是英国Eramba公司的一个合规管理软件。 Eramba Community和Eramba Enterprise 3.26.0版本存在安全漏洞，该漏洞源于CORS配置错误，可能导致会话劫持和数据渗漏。

Description (English)

Eramba Community and Eramba Enterprise are both British Eramba’s compliance software. Versions Eramba Community and Eramba Enterprise 3.26.0 contain security loopholes that stem from COREs configuration errors that can lead to conversational hijackings and data leakage.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Eramba

Published

2026-01-13

Last Modified

2026-02-24

References

http://eramba.com https://discussions.eramba.org/t/release-3-28-0/7860 https://access.redhat.com/security/cve/cve-2025-55462