VYPR
Medium severity6.3NVD Advisory· Published Feb 7, 2026· Updated Apr 29, 2026

CVE-2026-2079

CVE-2026-2079

Description

A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This vulnerability affects the function addMenu/updateMenu/deleteMenu of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\MenuController.java of the component Menu Management. Executing a manipulation can lead to improper authorization. The attack may be launched remotely. The exploit has been published and may be used. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases. The project was informed of the problem early through an issue report but has not responded yet.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Yeqifu/Warehouse2 versions
    cpe:2.3:a:yeqifu:warehouse:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:yeqifu:warehouse:*:*:*:*:*:*:*:*range: <=2025-10-06
    • (no CPE)range: < aaf29962ba407d22d991781de28796ee7b4670e4

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.