7.5
CVE-2025-46575
- EPSS 0.31%
- Veröffentlicht 27.04.2025 01:12:36
- Zuletzt bearbeitet 12.05.2025 19:33:14
- Quelle psirt@zte.com.cn
- CVE-Watchlists
- Unerledigt
ZTE GoldenDB Database product has an information disclosure vulnerability
There is an information disclosure vulnerability in the GoldenDB database product. Attackers can exploit error messages to obtain the system's sensitive information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zte ≫ Zxcloud Goldendb Version6.1.03.09
Zte ≫ Zxcloud Goldendb Version6.1.03.10
Zte ≫ Zxcloud Goldendb Version7.2.01.01 Update- SwEdition-
Zte ≫ Zxcloud Goldendb Version7.2.01.01 Update- SwEditionlite
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.31% | 0.535 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| psirt@zte.com.cn | 4.9 | 1.2 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
|
CWE-209 Generation of Error Message Containing Sensitive Information
The product generates an error message that includes sensitive information about its environment, users, or associated data.