CNNVD-202601-4941 Information
Jan 29, 2026
cve
CNNVD ID
CNNVD-202601-4941
Related CVE
- CNNVD Published: 2026-01-29
Description (Chinese)
Open Security Issue Management是Red Hat Product Security开源的一个Web UI界面。 Open Security Issue Management v2025.9.0之前版本存在安全漏洞,该漏洞源于nginx配置文件中$uri$args拼接不当,可能导致路径遍历攻击。
Description (English)
Open Security Issue Management is a Web UI interface for Red Hat Production Security. There was a security loophole in the previous version of Open Security Issue Management v2025.9.0, which resulted from an inappropriate nginx configuration file of $uri$args, which could lead to routing attacks.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Red Hat Product Security
Published
2026-01-29
Last Modified
2026-02-24
References
https://github.com/RedHatProductSecurity/osim/pull/615
Patch
https://github.com/RedHatProductSecurity/osim/releases
Share on: