猫宁i Morning Shiro Configuration index path traversal_CVE-2025-8815

{
    "lastseen": "",
    "description": "A vulnerability was found in \u732b\u5b81i Morning up to bc782730c74ff080494f145cc363a0b4f43f7d3e. It has been classified as critical. Affected is an unknown function of the file /index of the component Shiro Configuration. The manipulation leads to path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continuous delivery. Therefore, no version details for affected nor updated releases are available.",
    "published": "2025-08-10T15:32:11.150Z",
    "modified": "2025-08-10T15:32:11.150Z",
    "type": "cve",
    "title": "\u732b\u5b81i Morning Shiro Configuration index path traversal",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.319344\nhttps://vuldb.com/?ctiid.319344\nhttps://vuldb.com/?submit.622348\nhttps://gitee.com/morning-pro/Morning/issues/ICOVAK",
    "id": "CVE-2025-8815",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22"
    ],
    "cvelist": null,
    "sourceData": "\u732b\u5b81i Morning bc782730c74ff080494f145cc363a0b4f43f7d3e",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Morning",
    "version": "bc782730c74ff080494f145cc363a0b4f43f7d3e",
    "vendor": "\u732b\u5b81i",
    "ai_description": "A critical vulnerability in the Shiro Configuration component of Morning allows remote attackers to perform path traversal, potentially accessing sensitive files. This issue has been publicly disclosed and could be exploited.",
    "ai_severity": "Critical",
    "ai_vendor": "\u732b\u5b81i",
    "ai_product": "Morning",
    "ai_version": "bc782730c74ff080494f145cc363a0b4f43f7d3e",
    "ai_score": 0
}