exploitDog

GHSA-rchw-8w6p-7f7r

Опубликовано: 23 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Incorrect access control in the selectDept function of RuoYi v4.8.2 allows unauthorized attackers to arbitrarily access sensitive department data.

Incorrect access control in the selectDept function of RuoYi v4.8.2 allows unauthorized attackers to arbitrarily access sensitive department data.

Ссылки

EPSS

Процентиль: 2%

0.00013

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2025-70986

CVSS3: 7.5

nvd

16 дней назад

Incorrect access control in the selectDept function of RuoYi v4.8.2 allows unauthorized attackers to arbitrarily access sensitive department data.

EPSS

Процентиль: 2%

0.00013

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-284