CVE-2026-2075

Name of the Vulnerable Software and Affected Versions yeqifu warehouse versions prior to aaf29962ba407d22d991781de28796ee7b4670e4

Description A security flaw exists due to improper access controls. The issue is located in the saveRolePermission function within the file datasetreposwarehousesrcmainjavacomyeqifusyscontrollerRoleController.java of the Role-Permission Binding Handler component. This flaw allows for remote attacks, and an exploit has been publicly released. The project has been notified but has not yet responded.

Recommendations Update to version aaf29962ba407d22d991781de28796ee7b4670e4 or later.