CNNVD-202602-580 Information
CNNVD ID
CNNVD-202602-580
Related CVE
- CNNVD Published: 2026-02-04
Description (Chinese)
Bambuddy是MartinNYHC个人开发者的一个3D打印机的自托管打印管理系统。 Bambuddy 0.1.7之前版本存在安全漏洞,该漏洞源于硬编码密钥和ManyAPI路由未检查身份验证,可能导致安全风险。
Description (English)
Bambuddy is the self-hosted printing management system for a 3D printer by Martin NYHC Personal Developer. The previous version of Bambuddy 0.1.7 had a security loophole, which stemmed from the failure to verify the hard-coded key and the ManyaPI route, which could lead to security risks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2026-02-04
Last Modified
2026-02-24
References
https://github.com/maziggy/bambuddy/blob/a9bb8ed8239602bf08a9914f85a09eeb2bf13d15/backend/app/core/auth.py#L28 https://github.com/maziggy/bambuddy/commit/a82f9278d2d587b7042a0858aab79fd8b6e3add9 https://github.com/maziggy/bambuddy/security/advisories/GHSA-gc24-px2r-5qmf
Patch
https://github.com/maziggy/bambuddy/releases
Share on: