CNNVD-202508-3177 Information

CNNVD ID

CNNVD-202508-3177

Related CVE

CVE-2024-37777

• CNNVD Published: 2025-08-27

Description (Chinese)

O2OA是O2OA开源的一款企业应用开发平台。 O2OA 9.0.3版本存在安全漏洞，该漏洞源于mainOutput函数处理不当，可能导致远程代码执行。

Description (English)

O2OA is an enterprise application development platform for O2OA open sources. The O2OA version 9.0.3 contains a security loophole, which stems from the mishandling of the MainOutput function and may lead to remote code execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

O2OA

Published

2025-08-27

Last Modified

2026-02-24

References

https://github.com/o2oa/o2oa/issues/158 https://nvd.nist.gov/vuln/detail/CVE-2024-37777

Patch

https://github.com/o2oa/o2oa/tags