CVE-2023-41578

Published: Sep 8, 2023
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-41578" target="_blank" rel="noopener"> CVE-2023-41578
GHSA: <a href="https://github.com/advisories/GHSA-pm8v-ppx7-8hr4" target="_blank" rel="noopener"> GHSA-pm8v-ppx7-8hr4
Severity: High
Exploit:

Jeecg boot up to v3.5.3 was discovered to contain an arbitrary file read vulnerability via the interface /testConnection.

CVSS v3:

No CWE or OWASP classifications available.

Software	From	Fixed in
org.jeecgframework.boot / jeecg-boot-parent	-	3.5.3.x
jeecg / jeecg_boot	-	3.5.3.x

Vulnerability Database