CVE-2025-26358

Publication date

2025-02-12 13:28:52

Family

Nozomi

State

PUBLISHED

Description

A CWE-15 "External Control of System or Configuration Setting" in ldbMT.so in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to modify system configuration via crafted HTTP requests.