VYPR
Medium severity6.3NVD Advisory· Published Apr 10, 2026· Updated Apr 29, 2026

CVE-2026-5999

CVE-2026-5999

Description

A vulnerability has been found in JeecgBoot up to 3.9.1. This impacts an unknown function of the component SysAnnouncementController. Such manipulation leads to improper authorization. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor confirmed the issue and will provide a fix in the upcoming release.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Jeecg/Jeecgbootreferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=3.9.1

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.