CNNVD-202601-848 Information
Jan 05, 2026
cve
CNNVD ID
CNNVD-202601-848
Related CVE
- CNNVD Published: 2026-01-05
Description (Chinese)
OpenCTI是OpenCTI开源的一个开放网络威胁情报平台。 OpenCTI 6.8.1之前版本存在安全漏洞,该漏洞源于GraphQL突变缺少授权检查,可能导致未经授权的资源删除。
Description (English)
OpenCTI is an open web threat information platform for OpenCTI open sources. There was a security gap in the previous version of OpenCTI 6.8.1, which stemmed from the lack of authorization for the GramphQL mutation, which could lead to the removal of unauthorized resources.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
OpenCTI
Published
2026-01-05
Last Modified
2026-02-24
References
https://github.com/OpenCTI-Platform/opencti/security/advisories/GHSA-pr6m-q4g7-342c https://access.redhat.com/security/cve/cve-2025-61781
Patch
https://github.com/OpenCTI-Platform/opencti/releases
Share on: