CVE-2025-49003

Name of the Vulnerable Software and Affected Versions: DataEase versions prior to 2.10.11

Description: The issue concerns a feature in Java where certain characters are converted to their uppercase equivalents, potentially allowing a threat actor to craft a message that exploits this character conversion for remote code execution.

Recommendations: For versions prior to 2.10.11, update to version 2.10.11 to resolve the issue. As a temporary workaround, consider restricting the use of Java character conversion features until the update is applied.