CNNVD-202601-2408 Information

CNNVD ID

CNNVD-202601-2408

Related CVE

CVE-2026-22238

• CNNVD Published: 2026-01-14

Description (Chinese)

Bluspark BLUVOYIX是美国Bluspark公司的一个数字化供应链管理平台。 Bluspark BLUVOYIX存在安全漏洞，该漏洞源于管理API身份验证不当，可能导致攻击者创建具有管理员权限的新用户，从而完全访问客户数据并彻底破坏目标平台。

Description (English)

Bluspank BLUVOYIX is a digital supply chain management platform for Bluespank in the United States. There is a security loophole in Bluspank BLUVOYIX, which stems from the mismanagement of API identification, which may lead the attackers to create new users with administrator privileges, thus fully accessing client data and completely destroying the target platform.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Bluspark

Published

2026-01-14

Last Modified

2026-02-24

References

https://blusparkglobal.com/bluvoyix/ https://access.redhat.com/security/cve/cve-2026-22238