VDB

GCVE-110-MAGEIA-2025-174

GCVE-110-MAGEIA-2025-174
Advisory Published
Vulnetix · Advisory published May 31, 2025
Limited unauthenticated file read in /flag. (CVE-2025-46561) New version check over unencrypted channel. (CVE-2025-46562) SSRF with information leak and limited unauthenticated file write. (CVE-2025-46563) Unauthenticated file read in /js may lead to RCE. (CVE-2025-46564) Mageia internal bug: deluge-daemon.service was not working; the update fixes this issue.

Affected Products

VendorProductVersionsPlatforms
Mageiadeluge2.2.0-1.5.mga9 (unaffected), 0 (affected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›