CNNVD-202601-3959 Information

CNNVD ID

CNNVD-202601-3959

Related CVE

CVE-2022-25369

• CNNVD Published: 2026-01-23

Description (Chinese)

DynamicWeb是美国DynamicWeb公司的一个全栈式数字体验平台。 Dynamicweb 9.12.8之前版本存在安全漏洞，该漏洞源于逻辑问题导致可添加新管理员用户，可能导致命令执行。

Description (English)

DynamicWeb is a full house digital experience platform for DynamicWeb in the United States. There was a security loophole in the pre-Dynamicweb 9.12.8 version, which stemmed from logical problems leading to the addition of new administrator users, which could lead to enforcement of orders.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

DynamicWeb

Published

2026-01-23

Last Modified

2026-02-24

References

https://www.dynamicweb.com/resources/downloads?Category=Releases https://www.assetnote.io/resources/research/advisory-dynamicweb-logic-flaw-leading-to-rce-cve-2022-25369 https://access.redhat.com/security/cve/cve-2022-25369

Patch

https://dynamicweb.com/