CNNVD-202601-3830 Information

CNNVD ID

CNNVD-202601-3830

Related CVE

CVE-2025-12738

• CNNVD Published: 2026-01-22

Description (Chinese)

Neo4j Enterprise Edition是美国Neo4j公司的一款图数据库。 Neo4j Enterprise Edition 2025.11.2之前版本和5.26.17之前版本存在安全漏洞，该漏洞源于攻击者可通过观察错误消息枚举属性值，可能导致信息泄露。

Description (English)

Neo4j Enterprise Edition is a graphic database of Neo4j in the United States. There is a security loophole in the pre-Neo4j Enterprise Edition 2025.11.2 and the pre-Appendix 5.26.17, which stems from the fact that the assailant can enumerate properties by observing the wrong message, which could lead to the disclosure of information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Neo4j

Published

2026-01-22

Last Modified

2026-02-24

References

https://neo4j.com/security/CVE-2025-12738 https://access.redhat.com/security/cve/cve-2025-12738

Patch

https://neo4j.com/security/CVE-2025-12738/