CNNVD-202602-1405 Information

Feb 09, 2026 cve

CNNVD ID

CNNVD-202602-1405

CVE-2026-25939

  • CNNVD Published: 2026-02-09

Description (Chinese)

FUXA是frangoteam开源的一个基于web的过程可视化软件。 FUXA 1.2.8版本至1.2.10版本存在安全漏洞,该漏洞源于存在授权绕过,可能导致未经验证的远程攻击者创建和修改任意调度程序。

Description (English)

FUXA is a web-based process visualization software that is an open source for francoteam. There is a security gap between FUXA Version 1.2.8 and Version 1.2.10, which stems from the existence of a mandate circumvention, which may lead to uncertified remote assailants creating and modifying arbitrary scheduling procedures.

Vulnerability Type

其他

Affected Vendor

frangoteam

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/frangoteam/FUXA/commit/5782b35117a9bd14ffcb881f8dfb8c6680157d9b https://github.com/frangoteam/FUXA/releases/tag/v1.2.11 https://github.com/frangoteam/FUXA/security/advisories/GHSA-c869-jx4c-q5fc

Patch

https://github.com/frangoteam/FUXA/releases/

Share on: