CNNVD-202509-3834 Information

CNNVD ID

CNNVD-202509-3834

Related CVE

CVE-2025-56819

• CNNVD Published: 2025-09-24

Description (Chinese)

datart是running-elephant开源的一个数据可视化开放平台。 datart 1.0.0-rc.3版本存在安全漏洞，该漏洞源于INIT连接参数处理不当，可能导致执行任意代码。

Description (English)

Datart is a data visualizing open-source platform. There is a security loophole in version 1.0.0-rc.3, which stems from the inappropriate handling of INIT connectivity parameters, which may lead to the implementation of any code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

running-elephant

Published

2025-09-24

Last Modified

2026-02-24

References

https://h2database.com/html/features.html#runscript https://github.com/h2database/h2database https://github.com/xyyzxc/CVE-2025-56819 https://access.redhat.com/security/cve/cve-2025-56819