Skip to content

Protocol Buffers 安全漏洞 in kuboard 4 #620

New issue
New issue
Open
Open
Protocol Buffers 安全漏洞 in kuboard 4#620
@jerry-nom

Description

@jerry-nom
jerry-nom
opened on Dec 27, 2025

客户安全扫描发现:

  1. CVE编号:CVE-2024-7254
    漏洞名称:
    Protocol Buffers 安全漏洞

影响范围:
[container:5b716985793349774c31a73035467be3d585c75e7da3b596a573318345653a9f]:/app/kuboard-server.jar#BOOT-INF/lib/protobuf-java-3.25.1.jar#META-INF/MANIFEST.MF

  1. CVE编号:CVE-2025-24970
    漏洞名称:
    Netty 输入验证错误漏洞

影响范围:
[container:5b716985793349774c31a73035467be3d585c75e7da3b596a573318345653a9f]:/app/kuboard-server.jar#BOOT-INF/lib/netty-handler-4.1.117.Final.jar#META-INF/maven/io.netty/netty-handler/pom.xml

  1. CVE编号:CVE-2025-25193
    漏洞名称:
    Netty 资源管理错误漏洞

影响范围:
[container:5b716985793349774c31a73035467be3d585c75e7da3b596a573318345653a9f]:/app/kuboard-server.jar#BOOT-INF/lib/netty-handler-4.1.117.Final.jar#META-INF/maven/io.netty/netty-handler/pom.xml

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions