CNNVD-202506-3027 Information

CNNVD ID

CNNVD-202506-3027

Related CVE

CVE-2025-34039

• CNNVD Published: 2025-06-24

Description (Chinese)

Yonyou UFIDA NC是中国用友（Yonyou）公司的一款高端管理软件。 Yonyou UFIDA NC v6.5及之前版本存在安全漏洞，该漏洞源于暴露BeanShell测试servlet导致代码注入攻击。

Description (English)

Yonyou UFIDA NC is a high-end management software for Yonyou. Yonyou UFIDA NC v. 6.5 and previous versions had a security loophole, which originated from the exposure of the Bean Shell test server that caused the code to be injected into the attack.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

用友

Published

2025-06-24

Last Modified

2026-02-24

References

https://www.cnblogs.com/pursue-security/p/17685141.html https://vulncheck.com/advisories/yonyou-ufida-nc-beanshell-code-injection https://www.cnvd.org.cn/flaw/show/CNVD-2021-30167 https://access.redhat.com/security/cve/cve-2025-34039