{"id":"CVE-2025-54471","details":"NeuVector used a hard-coded cryptographic key embedded in the source \ncode. At compilation time, the key value was replaced with the secret \nkey value and used to encrypt sensitive configurations  when NeuVector \nstores the data.","aliases":["GHSA-h773-7gf7-9m2x","GO-2025-4043"],"modified":"2026-03-23T05:06:05.739168239Z","published":"2025-10-30T10:15:35.400Z","related":["CGA-26m7-7hp5-7gpg","openSUSE-SU-2025:15710-1"],"references":[{"type":"ADVISORY","url":"https://github.com/neuvector/neuvector/security/advisories/GHSA-h773-7gf7-9m2x"},{"type":"REPORT","url":"https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-54471"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-54471.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}