CVE-2025-3199

Name of the Vulnerable Software and Affected Versions ageerle ruoyi-ai versions 2.0.1 and earlier

Description A critical issue affects an unknown functionality of the file ruoyi-modules/ruoyi-system/src/main/java/org/ruoyi/system/controller/system/SysModelController.java in the component's API Interface. This leads to improper authorization and can be exploited remotely.

Recommendations For versions 2.0.1 and earlier, update to version 2.0.2 to address the issue. As a temporary workaround, consider restricting access to the SysModelController.java file until the update is applied.