CVE-2025-26866 | Apache HugeGraph-Server up to 1.5.0 PD Store deserialization

Inserito da Angelo Barbosa | Dic 9, 2025 | CVE

A vulnerability has been found in Apache HugeGraph-Server up to 1.5.0 and classified as problematic. This impacts an unknown function of the component PD Store. The manipulation leads to deserialization.

This vulnerability is referenced as CVE-2025-26866. The attack needs to be initiated within the local network. No exploit is available.

The affected component should be upgraded.

CVE-2025-26866 | Apache HugeGraph-Server up to 1.5.0 PD Store deserialization

Post correlati

CVE-2025-7471 | code-projects Modern Bag 1.0 /admin/login-back.php user-name sql injection

CVE-2024-20358 | Cisco ASA/Firepower Threat Defense command injection (cisco-sa-asaftd-cmd-inj-ZJV8Wysm)

CVE-2024-51055 | Hoosk 1.7.1 config.php Privilege Escalation

CVE-2025-11354 | code-projects Online Hotel Reservation System 1.0 /admin/addslideexec.php image unrestricted upload