CNNVD-202507-147 Information
Jul 02, 2025
cve
CNNVD ID
CNNVD-202507-147
Related CVE
- CNNVD Published: 2025-07-02
Description (Chinese)
DataEase是DataEase开源的一个开源的数据可视化分析工具。用于帮助用户快速分析数据并洞察业务趋势,从而实现业务的改进与优化。 DataEase 2.10.11之前版本存在安全漏洞,该漏洞源于PostgreSQL和Redshift中参数处理不当。
Description (English)
DataEase is an open source data visualization analysis tool for DataEase open sources. To help users quickly analyse data and see business trends, thereby improving and optimizing operations. There was a security loophole in the previous version of DataEase 2.10.11, which stemmed from the mishandling of parameters in PostgreSQL and Redshift.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
DataEase
Published
2025-07-02
Last Modified
2026-02-24
References
https://github.com/dataease/dataease/security/advisories/GHSA-q726-5pr9-x7gm
Patch
https://github.com/dataease/dataease/releases
Share on: