dataease Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by dataease
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Remote Code Execution Vulnerability in DataEase by DataEase Developers
CVE-2025-32966DataeaseDataease8.2HIGHAuthentication Flaw in DataEase Business Intelligence Tool
CVE-2025-27138DataeaseDataease7.7HIGHDataEase Business Intelligence Tool Vulnerability Allows File Deserialization
CVE-2025-27103DataeaseDataease7.3HIGHDeserialization Vulnerability in DataEase Business Intelligence Tool
CVE-2025-24974DataeaseDataease7.3HIGHAuthentication Bypass Risk in DataEase Data Visualization Tool
CVE-2024-56511DataeaseDataease9.8CRITICALRemote Code Execution Vulnerability in DataEase Business Analytics Tool
CVE-2024-55952DataEaseDataease8.8HIGHArbitrary File Deserialization Vulnerability in DataEase Analytics Tool
CVE-2024-55953DataEaseDataEase8.1HIGHJWT Forgery Vulnerability in DataEase by DataEase Team
CVE-2024-52295DataEase TeamDataEase9.8CRITICALDataease arbitrary interface access vulnerability
CVE-2024-47073DataeaseDataease9.1CRITICALDataEase JDBC Deserialization Vulnerability
CVE-2024-47074DataeaseDataease9.8CRITICALXML External Entity Injection in DataEase Data Visualization Tool
CVE-2024-46985DataeaseDataease7.5HIGHRemote Command Execution Vulnerability in DataEase Open Source Tool
CVE-2024-46997DataeaseDataease9.8CRITICALArbitrary File Reading Vulnerability in DataEase
CVE-2024-31441DataeaseDataease7.5HIGHDeserialization vulnerability in DataEase datasource can lead to arbitrary code execution
CVE-2024-23328dataeasedataease9.1CRITICALDataEase has a vulnerability to obtain user cookies
CVE-2023-40183DataeaseDataease7.5HIGHSQL Injection Vulnerability in DataEase by DataEase Team
CVE-2023-40771DataeaseDataease7.5HIGHDataEase has a SQL injection vulnerability that can bypass blacklists
CVE-2023-37258DataeaseDataease8.8HIGHUnauthorized users can delete applications in DataEase
CVE-2023-34463DataeaseDataease8.1HIGHDataEase API interface has IDOR vulnerability
CVE-2023-32310dataeasedataease8.1HIGHDataEase data source has deserialization vulnerability
CVE-2023-33963dataeasedataease9.8CRITICALDataEase AWS redshift data source exists for remote code execution vulnerability
CVE-2023-28637DataeaseDataease8HIGHSQL injection vulnerability due to the keyword blacklist for defending against SQL injection will be bypassed
CVE-2023-28437DataeaseDataease9.8CRITICALDataEase dashboard has a stored XSS vulnerability
CVE-2023-25807DataeaseDataease7.2HIGHSQL Injection Vulnerability in DataEase API Component
CVE-2021-38239DataeaseDataease7.5HIGHDataease Mysql Data Source JDBC Connection Parameters Not Verified Leads to Deserialization Vulnerability
CVE-2022-39312DataeaseDataease9.8CRITICAL