CNNVD-202601-2996 Information
CNNVD ID
CNNVD-202601-2996
Related CVE
- CNNVD Published: 2026-01-19
Description (Chinese)
Wings是Pterodactyl Panel 的服务器控制界面。 Wings 1.7.0版本至1.12.0之前版本存在资源管理错误漏洞,该漏洞源于未考虑SQLite最大参数限制,可能导致数据库服务器磁盘空间耗尽。
Description (English)
Wings is a server control interface for Pterodactyl Panel. Wings 1.7.0 to 1.12.0 had a resource management error gap, which stemmed from the failure to consider SQLite maximum parameter limits and could lead to the depletion of disk space on the database server.
Hazard Level
High
Vulnerability Type
资源管理错误
Published
2026-01-19
Last Modified
2026-02-24
References
https://github.com/pterodactyl/wings/security/advisories/GHSA-2497-gp99-2m74 https://github.com/pterodactyl/wings/blob/9ffbcdcdb1163da823cf9959b9602df9f7dcb54a/internal/cron/activity_cron.go#L81 https://github.com/pterodactyl/wings/blob/9ffbcdcdb1163da823cf9959b9602df9f7dcb54a/internal/cron/sftp_cron.go#L86 https://access.redhat.com/security/cve/cve-2026-21696
Patch
https://github.com/pterodactyl/wings/releases
Share on: