Sign in Subscribe

← All advisories

Unrated severityOSV Advisory· Published Jan 23, 2026· Updated Jan 23, 2026

CVE-2025-70986

CVE-2025-70986

Description

Incorrect access control in the selectDept function of RuoYi v4.8.2 allows unauthorized attackers to arbitrarily access sensitive department data.

Affected products

1

Yangzongzhuan/RuoyiOSV
Range: v2.2, v2.3, v2.4, …

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.