A vulnerability labeled as critical has been found in DataEase up to 2.10.22. This vulnerability affects the function doFilter of the component Token Handler. Such manipulation of the argument X-DE-TOKEN leads to improper verification of cryptographic signature.

This vulnerability is uniquely identified as CVE-2026-46684. The attack can be launched remotely. No exploit exists.