VYPR
Unrated severityNVD Advisory· Published May 11, 2025· Updated May 12, 2025

JeecgBoot Document Library Upload zip unzipFile resource consumption

CVE-2025-4533

Description

A vulnerability classified as problematic was found in JeecgBoot up to 3.8.0. This vulnerability affects the function unzipFile of the file /jeecg-boot/airag/knowledge/doc/import/zip of the component Document Library Upload. The manipulation of the argument File leads to resource consumption. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Jeecg/Jeecgbootllm-fuzzy2 versions
    <=3.8.0+ 1 more
    • (no CPE)range: <=3.8.0
    • (no CPE)range: 3.0

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.