VDB
MINI-qx7v-246x-pf3m
MINI-qx7v-246x-pf3m
PUBLISHED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| MinimOS | opensearch-2-performance-analyzer | 0, 0 |
| MinimOS | opensearch-2-ml-commons | 0, 0 |
| MinimOS | opensearch-2-analysis-stempel | 0, 0 |
| MinimOS | opensearch-2-identity-shiro | 0, 0 |
| MinimOS | opensearch-2-repository-gcs | 0, 0 |
| MinimOS | opensearch-2-store-smb | 0, 0 |
| MinimOS | opensearch-2-k-nn | 0, 0 |
| MinimOS | opensearch-2-discovery-gce | 0, 0 |
| MinimOS | opensearch-2-analysis-kuromoji | 0, 0 |
| MinimOS | opensearch-2-repository-azure | 0, 0 |
| MinimOS | opensearch-2-ingest-attachment | 0, 0 |
| MinimOS | opensearch-2-mapper-size | 0, 0 |
| MinimOS | opensearch-2-opensearch-system-templates | 0, 0 |
| MinimOS | opensearch-2-anomaly-detection | 0, 0 |
| MinimOS | opensearch-2-crypto-kms | 0, 0 |
| MinimOS | opensearch-2-security-analytics | 0, 0 |
| MinimOS | opensearch-2-geospatial | 0, 0 |
| MinimOS | opensearch-2-analysis-phonetic | 0, 0 |
| MinimOS | opensearch-2-custom-codecs | 0, 0 |
| MinimOS | opensearch-2-telemetry-otel | 0, 0 |
…and 28 more
Exploit Intelligence
- CVE-2025-27817 (github-poc)
- Apache Kafka客户端未对用户输入进行严格验证和限制,未经身份验证的攻击者可通过构造恶意配置读取环境变量或磁盘任意内容,或向非预期位置发送请求,提升REST API的文件系统/环境/URL访问权限。 (github-poc)
- CVE-2025-27817 (github-poc)
- 01.基于vless的科学上网.html (github-poc)
- KafkaRecordSupplier.java (github-poc)
- druid-612f0710.json (github-poc)
- async-iot.ts (github-poc)
- Nuclei Template: CVE-2025-27817 (nuclei-template)
Timeline
- Jul 27, 2025 CVE Published
- Nov 9, 2025 CVE Updated