This is an automated email from the ASF dual-hosted git repository. vgalaxies pushed a commit to branch VGalaxies-patch-1 in repository https://gitbox.apache.org/repos/asf/incubator-hugegraph-doc.git
commit 27815fdf0cd2389e03570b51960de906ce00c3c6 Author: VGalaxies <[email protected]> AuthorDate: Fri Dec 12 14:04:23 2025 +0800 Update security.md with new CVE listings Added new CVE entries for HugeGraph vulnerabilities. --- content/cn/docs/guides/security.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/content/cn/docs/guides/security.md b/content/cn/docs/guides/security.md index a1bdf20c..9a0a77dc 100644 --- a/content/cn/docs/guides/security.md +++ b/content/cn/docs/guides/security.md @@ -29,6 +29,8 @@ weight: 7 - [CVE-2024-27348](https://www.cve.org/CVERecord?id=CVE-2024-27348): HugeGraph-Server - Command execution in gremlin - [CVE-2024-27349](https://www.cve.org/CVERecord?id=CVE-2024-27349): HugeGraph-Server - Bypass whitelist in Auth mode +- [CVE-2024-43441](https://www.cve.org/CVERecord?id=CVE-2024-43441): HugeGraph-Server - Fixed JWT Token (Secret) +- [CVE-2025-26866](https://www.cve.org/CVERecord?id=CVE-2025-26866): HugeGraph-Server - RAFT and deserialization vulnerability ### [HugeGraph-Toolchain](https://github.com/apache/hugegraph-toolchain) 仓库 (Hubble/Loader/Client/Tools/..)
