CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

DataEase CVE-2025-46566 affects the open-source BI tool; authenticated users could achieve RCE via the backend JDBC link due to validation issues in the JDBC path. The vulnerability is addressed in version 2.10.9, with Red Hat/OSV notes indicating a bypass risk before 2.10.10 and that 2.10.10 con...

9.8CVSS6.3AI score0.00297EPSS

Exploits1References1Affected Software1

OSV•added 2025/04/23 3:21 p.m.•1 views

CVE-2025-32966 Dataease H2 JDBC Connection Remote Code Execution

DataEase is an open-source BI tool alternative to Tableau. Prior to version 2.10.8, authenticated users can complete RCE through the backend JDBC link. This issue has been patched in version 2.10.8...

9.2CVSS6.4AI score0.05147EPSS

Exploits1References3

OSV•added 2023/07/25 7:4 p.m.•9 views

CVE-2023-37257 The DataEase panel and dataset have a stored XSS vulnerability

DataEase is an open source data visualization analysis tool. Prior to version 1.18.9, the DataEase panel and dataset have a stored cross-site scripting vulnerability. The vulnerability has been fixed in v1.18.9. There are no known workarounds...

5.4CVSS5.3AI score0.00571EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by