ГлавнаяУязвимости → CVE-2025-56396
8.8высокая

CVE-2025-56396

Описание

An issue was discovered in Ruoyi 4.8.1 allowing attackers to gain escalated privileges due to the owning department having higher rights than the active user.

Затрагиваемое ПО
Ruoyi Ruoyi
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://gist.github.com/Han-tj/22cfd18fa9f116bb886e8e56782f6865https://gitee.com/y_project/RuoYi/issues/ICJ865