How severe is CVE-2023-27025?

CVE-2023-27025 has a CVSS v3 score of 7.5 (HIGH).

CVE-2023-27025

Name: ruoyi
Author: ruoyi

7.5HIGH

An arbitrary file download vulnerability in the background management module of RuoYi v4.7.6 and below allows attackers to download arbitrary files in the server.

公開日: 4/2/2023更新日: 2/18/2025

説明

An arbitrary file download vulnerability in the background management module of RuoYi v4.7.6 and below allows attackers to download arbitrary files in the server.

AI分析AIによる分析

影響を受ける製品

ruoyiruoyi

参照

https://gitee.com/y_project/RuoYi/commit/432d5ce1be2e9384a6230d7ccd8401eef5ce02b0
Permissions Required
https://gitee.com/y_project/RuoYi/issues/I697Q5
ExploitIssue Tracking
https://gitee.com/y_project/RuoYi/commit/432d5ce1be2e9384a6230d7ccd8401eef5ce02b0
Permissions Required
https://gitee.com/y_project/RuoYi/issues/I697Q5
ExploitIssue Tracking