CNNVD-202601-832 Information

CNNVD ID

CNNVD-202601-832

Related CVE

CVE-2025-67397

• CNNVD Published: 2026-01-05

Description (Chinese)

Passy是意大利Passy公司的一个物理访问管理平台。 Passy 1.6.3版本存在安全漏洞，该漏洞源于特制HTTP请求，可能导致执行任意命令。

Description (English)

Passy is a physical access management platform for Passy Italy. Version 1.6.3 contains a security loophole, which stems from a specially designed HTTP request and may lead to the execution of arbitrary orders.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Passy

Published

2026-01-05

Last Modified

2026-02-24

References

https://github.com/giulioschiavone/Vulnerability-Research/tree/main/CVE-2025-67397 https://www.passy.it/ https://access.redhat.com/security/cve/cve-2025-67397