216.73.217.80

CVE-2025-58748

· Published 15/09/2025 17:15 · Modified 16/09/2025 12:49

Labels: CVE-2025-58748 2025-09-15CVE-2025-58748CWE-502[email protected]

Essential information

Published
15/09/2025 17:15
Modified
16/09/2025 12:49
Author
Creator
CVSS
8.7 HIGH (v3) 8.7 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Dataease is an open source data analytics and visualization platform. In Dataease versions up to 2.10.12 the H2 data source implementation (H2.java) does not verify that a provided JDBC URL starts with jdbc:h2. This lack of validation allows a crafted JDBC configuration that substitutes the Amazon Redshift driver and leverages the socketFactory and socketFactoryArg parameters to invoke org.springframework.context.support.FileSystemXmlApplicationContext or ClassPathXmlApplicationContext with an attacker‑controlled remote XML resource, resulting in remote code execution. Versions up to and including 2.10.12 are affected. The issue is fixed in version 2.10.13. Updating to version 2.10.13 or later is the recommended remediation. No known workarounds exist.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
dataease / dataease cpe:2.3:a:dataease:dataease:<2.10.12:*:*:*:*:*:*:*
dataease / dataease cpe:2.3:a:dataease:dataease:2.10.13:*:*:*:*:*:*:*

References