CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/11/26 6:31 p.m.•2 views

EUVD-2025-199727

Ruoyi v4.8.0 is vulnerable to Incorrect Access Control. There is a missing checkUserDataScope permission check in the authRole method of SysUserController.java...

6.2AI score0.00043EPSS

Exploits0References4

OSV•added 2025/11/26 5:15 p.m.•2 views

CVE-2025-46175

Ruoyi v4.8.0 is vulnerable to Incorrect Access Control. There is a missing checkUserDataScope permission check in the authRole method of SysUserController.java...

7.5CVSS6.7AI score

Exploits0References3

CNNVD•added 2025/11/26 12:0 a.m.•2 views

Ruoyi 安全漏洞

Ruoyi is a backend management system by Ruoyi Personal Developer. A security vulnerability exists in Ruoyi v4.8.0, which stems from a missing permission check in the authRole method of SysUserController.java...

7.5CVSS6.5AI score0.00043EPSS

Exploits0References4

CVE•added 2025/11/26 12:0 a.m.•8 views

CVE-2025-46175

Ruoyi v4.8.0 is reported vulnerable to Incorrect Access Control due to a missing checkUserDataScope permission check in the authRole method of SysUserController.java. The CVE entry (CVE-2025-46175) shows a high impact with CVSS v3.1 base score 7.5 (Network, Low complexity, No privileges required,...

7.5CVSS6.4AI score0.00043EPSS

Exploits0References3Affected Software1

Cvelist•added 2025/11/26 12:0 a.m.•4 views

CVE-2025-46175

Ruoyi v4.8.0 is vulnerable to Incorrect Access Control. There is a missing checkUserDataScope permission check in the authRole method of SysUserController.java...

0.00043EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by