CVE-2025-56396

Sažetak

An issue was discovered in Ruoyi 4.8.1 allowing attackers to gain escalated privileges due to the owning department having higher rights than the active user.

Reference

https://gist.github.com/Han-tj/22cfd18fa9f116bb886e8e56782f6865
https://gitee.com/y_project/RuoYi/issues/ICJ865

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

26-11-2025 - 16:15

Objavljeno

26-11-2025 - 16:15