CVE-2025-46576 | THREATINT

Description

There is a Permission Management and Access Control vulnerability in the GoldenDB database product. Attackers can manipulate requests to bypass privilege restrictions and delete content.

PUBLISHED Reserved 2025-04-25 | Published 2025-04-27 | Updated 2025-04-28 | Assigner zte

MEDIUM: 5.4CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Problem types

CWE-269 Improper Privilege Management

Product status

Default status

unaffected

6.1.03.09 (custom)

affected

7.2.01.01 (custom)

unaffected

Lite7.2.01.01 (custom)

affected

References

support.zte.com.cn/...ui/bulletin/detail/1036467615091601464

cve.org (CVE-2025-46576)

nvd.nist.gov (CVE-2025-46576)

Download JSON