CNNVD-202602-1828 Information

CNNVD ID

CNNVD-202602-1828

Related CVE

CVE-2025-68663

• CNNVD Published: 2026-02-11

Description (Chinese)

Outline是Outline开源的一个知识库。 Outline 1.1.0之前版本存在授权问题漏洞，该漏洞源于WebSocket身份验证机制存在缺陷，可能导致被暂停用户维持或建立实时WebSocket连接并继续接收敏感操作更新。

Description (English)

Outline is an open-source knowledge base for Outline. The previous version of Outline 1.1.0 had a mandate gap, which stemmed from deficiencies in the WebSocket authentication mechanism, which could lead to suspension of users to maintain or establish real-time WebSocket connections and to continue receiving sensitive operational updates.

Vulnerability Type

授权问题

Affected Vendor

Outline

Published

2026-02-11

Last Modified

2026-02-24

References

https://github.com/outline/outline/releases/tag/v1.1.0 https://github.com/outline/outline/security/advisories/GHSA-mx2c-3g2x-5m9m

Patch

https://github.com/outline/outline/releases