CVE-2025-15121 JeecgBoot getDeptRoleByUserId information disclosure

🗓️ 28 Dec 2025 04:32:06Reported by VulDBType

JeecgBoot vulnerability up to version 3.9.0 leaks via departId manipulation in role function.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-15121	28 Dec 202506:52	–	circl
CNNVD	JeecgBoot 访问控制错误漏洞	28 Dec 202500:00	–	cnnvd
CNVD	JeecgBoot getDeptRoleByUserId function information leakage vulnerability	9 Jan 202600:00	–	cnvd
CVE	CVE-2025-15121	28 Dec 202504:32	–	cve
EUVD	EUVD-2025-205492	28 Dec 202506:31	–	euvd
NVD	CVE-2025-15121	28 Dec 202505:16	–	nvd
Positive Technologies	PT-2025-53636	28 Dec 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-15121	29 Dec 202509:05	–	redhatcve
Vulnrichment	CVE-2025-15121 JeecgBoot getDeptRoleByUserId information disclosure	28 Dec 202504:32	–	vulnrichment

[
  {
    "vendor": "n/a",
    "product": "JeecgBoot",
    "versions": [
      {
        "version": "3.0",
        "status": "affected"
      },
      {
        "version": "3.1",
        "status": "affected"
      },
      {
        "version": "3.2",
        "status": "affected"
      },
      {
        "version": "3.3",
        "status": "affected"
      },
      {
        "version": "3.4",
        "status": "affected"
      },
      {
        "version": "3.5",
        "status": "affected"
      },
      {
        "version": "3.6",
        "status": "affected"
      },
      {
        "version": "3.7",
        "status": "affected"
      },
      {
        "version": "3.8",
        "status": "affected"
      },
      {
        "version": "3.9.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/Hwwg/cve/issues/34
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

28 Dec 2025 04:32Current

CVSS 22.2

CVSS 3.12.4

CVSS 32.4

CVSS 44.8

EPSS0.00429