CNNVD-202601-4341 Information

CNNVD ID

CNNVD-202601-4341

Related CVE

CVE-2025-14969

• CNNVD Published: 2026-01-26

Description (Chinese)

Hibernate Reactive是Hibernate公司的一个响应式API接口。 Hibernate Reactive存在安全漏洞，该漏洞源于远程客户端可提前关闭HTTP连接，可能导致数据库连接池泄露，引发拒绝服务攻击。

Description (English)

Hibernate Action is a responsive API interface for Hibernate. There is a security loophole in the Hibernate Action, which stems from the fact that a remote client can close the HTTP connection ahead of time, which could lead to a leak in the database link pool and trigger a denial-of-service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Hibernate

Published

2026-01-26

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-14969 https://bugzilla.redhat.com/show_bug.cgi?id=2423822