CNNVD-202602-396 Information

CNNVD ID

CNNVD-202602-396

Related CVE

CVE-2026-24762

• CNNVD Published: 2026-02-03

Description (Chinese)

rustfs是RustFS开源的一个高性能对象存储系统。 rustfs alpha.13版本至alpha.81版本存在日志信息泄露漏洞，该漏洞源于将敏感凭据以明文记录到应用程序日志，可能导致凭据泄露。

Description (English)

Rustfs is a high performance object storage system for RustFS open sources. The rustfs alpha.13 to alpha.81 contains a leak in log information, which arises from the explicit recording of sensitive information in the application log, which may lead to a leak on the evidence.

Hazard Level

High

Vulnerability Type

日志信息泄露

Affected Vendor

RustFS

Published

2026-02-03

Last Modified

2026-02-24

References

https://github.com/rustfs/rustfs/security/advisories/GHSA-r54g-49rx-98cr https://access.redhat.com/security/cve/cve-2026-24762

Patch

https://rustfs.com/download/