High severityNVD Advisory· Published Feb 3, 2023· Updated Mar 26, 2025
CVE-2021-37305
CVE-2021-37305
Description
An Insecure Permissions issue in jeecg-boot 2.4.5 and earlier allows remote attackers to gain escalated privilege and view sensitive information via api uri: /sys/user/querySysUser?username=admin.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jeecgframework.boot:jeecg-boot-baseMaven | <= 2.4.5 | — |
Affected products
2- jeecg-boot/jeecg-bootdescription
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/advisories/GHSA-4f48-qpch-4ppxghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-37305ghsaADVISORY
- github.com/jeecgboot/jeecg-boot/issues/2794ghsaWEB
News mentions
0No linked articles in our index yet.