CNNVD-202602-1641 Information
Feb 10, 2026
cve
CNNVD ID
CNNVD-202602-1641
Related CVE
- CNNVD Published: 2026-02-10
Description (Chinese)
Apache HertzBeat是美国阿帕奇(Apache)公司的一个可以监控各种组件的工具。 Apache HertzBeat 1.8.0之前版本存在安全漏洞,该漏洞源于XPath表达式数据中和不当,可能导致XPath注入。
Description (English)
Apache Hertz Beat is a tool for the United States company Apache to monitor various components. There was a security loophole in the pre-Apache Hertz Beat 1.8.0, which originated in inappropriate XPath expression data and could lead to XPath injection.
Vulnerability Type
其他
Affected Vendor
阿帕奇
Published
2026-02-10
Last Modified
2026-02-24
References
https://lists.apache.org/thread/b2k3jqwffrbo2sy6bl4n0f68kp8bfo1n http://www.openwall.com/lists/oss-security/2026/02/09/4 https://access.redhat.com/security/cve/cve-2026-24343
Patch
https://hertzbeat.apache.org/zh-cn/docs/download
Share on: