CVE-2025-57772

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: DataEase versions prior to 2.10.12

Description: DataEase is an open-source business intelligence and data visualization tool. Prior to version 2.10.12, a H2 JDBC Remote Code Execution (RCE) bypass exists. If the JDBC URL meets specific criteria, the getJdbcUrl method returns the JdbcUrl parameter, bypassing H2’s filtering logic and allowing the specification of the H2 driver for the JDBC connection via "driver":"org.h2.Driver".

Recommendations: Update DataEase to version 2.10.12 or later.

Exploit

Fix

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2025-57772

GHSA-V37Q-VH67-9RQV

Affected Products

Dataease

CVE-2025-57772

Weakness Enumeration

Related Identifiers

Affected Products

References · 9