CNNVD-202601-4480 Information
CNNVD ID
CNNVD-202601-4480
Related CVE
- CNNVD Published: 2026-01-27
Description (Chinese)
Dozzle是Amir Raminfar个人开发者的一个小型轻量级应用程序。 Dozzle 9.0.3之前版本存在安全漏洞,该漏洞源于代理支持的Shell端点存在缺陷,可能导致用户获取超出范围的容器的交互式根Shell。
Description (English)
Dozzle is a small lightweight application for Amir Raminfar personal developers. There was a security loophole in the pre-Dozzle 9.3 version, which stemmed from defects in the proxy-supported Shell endpoint, which could lead users to access interactive Shell root of an out-of-scope container.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2026-01-27
Last Modified
2026-02-24
References
https://github.com/amir20/dozzle/commit/620e59aa246347ba8a27e68c532853b8a5137bc1 https://github.com/amir20/dozzle/releases/tag/v9.0.3 https://github.com/amir20/dozzle/security/advisories/GHSA-m855-r557-5rc5 https://access.redhat.com/security/cve/cve-2026-24740
Patch
https://github.com/anyrtcIO-Community/anyRTC-RTMP-OpenSource/releases
Share on: