CVE-2026-2077

Name of the Vulnerable Software and Affected Versions yeqifu warehouse (affected versions not specified)

Description A security issue exists in yeqifu warehouse related to improper authorization. The issue is present in the addRole, updateRole, and deleteRole functions within the RoleController.java file located in the datasetreposwarehousesrcmainjavacomyeqifusyscontroller directory, part of the Role Management Handler component. The exploit for this issue has been publicly disclosed and may be used to launch remote attacks. The project maintainers were notified of the problem but have not yet responded.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.