CVE-2025-49002 | DataEase up to 2.10.9 Incomplete Fix CVE-2025-32966 authentication spoofing

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability, which was classified as critical, has been found in DataEase up to 2.10.9. Affected by this issue is some unknown functionality of the component Incomplete Fix CVE-2025-32966. The manipulation leads to authentication bypass by spoofing.

This vulnerability is handled as CVE-2025-49002. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-49002 | DataEase up to 2.10.9 Incomplete Fix CVE-2025-32966 authentication spoofing

Post correlati

CVE-2023-36012 | Microsoft Windows Server 2008 R2 SP1 up to Server 2022 DHCP Server Service information disclosure

CVE-2025-5361 | Campcodes Online Hospital Management System 1.0 /contact.php fullname sql injection

CVE-2024-28760 | IBM App Connect Enterprise up to 11.0.0.25/12.0.12.0 Dashboard allocation of resources (XFDB-285244)

CVE-2024-8429 | Digital Operation Services WiFiBurada up to 1.0.4 excessive authentication