CNNVD-202601-4594 Information

CNNVD ID

CNNVD-202601-4594

Related CVE

CVE-2026-24807

• CNNVD Published: 2026-01-27

Description (Chinese)

quick-media是YiHui个人开发者的一个多媒体服务软件。 quick-media v1.0之前版本存在安全漏洞，该漏洞源于图像编解码组件SeekableOutputStream.Java存在加密签名验证不当，可能导致数据篡改。

Description (English)

Quick-media is a multimedia service software for the personal developers of YiHui. There is a security loophole in the prequick-media v1.0 version, which stems from the improper authentication of encrypted signatures in the image decoding componentSeekable OutputStream. Java, which may lead to data manipulation.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/liuyueyi/quick-media/pull/123 https://access.redhat.com/security/cve/cve-2026-24807

Patch

https://github.com/liuyueyi/quick-media/releases