CNNVD-202601-1608 Information

CNNVD ID

CNNVD-202601-1608

Related CVE

CVE-2025-66744

• CNNVD Published: 2026-01-09

Description (Chinese)

Yonyou YonBIP是中国用友（Yonyou）公司的一款商业创新平台。 Yonyou YonBIP 3及之前版本存在安全漏洞，该漏洞源于LoginWithV8接口存在路径遍历，可能导致未经授权访问敏感信息。

Description (English)

Yonyou YonBIP is a commercial innovation platform for Yonyou. Yonyou YonBIP 3 and previous versions had a security loophole that stemmed from the existence of the LoginWithV8 interface, which could lead to unauthorized access to sensitive information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

用友

Published

2026-01-09

Last Modified

2026-02-24

References

https://github.com/iSee857/YonYouBip-path-travel https://access.redhat.com/security/cve/cve-2025-66744