Maven package
cn.hutool/hutool-extra
pkg:maven/cn.hutool/hutool-extra
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-56769 | — | < 5.8.40 | 5.8.40 | Sep 25, 2025 | An issue was discovered in chinabugotech hutool before 5.8.4 allowing attackers to execute arbitrary expressions that lead to arbitrary method invocation and potentially remote code execution (RCE) via the QLExpressEngine class. |
- CVE-2025-56769Sep 25, 2025affected < 5.8.40fixed 5.8.40
An issue was discovered in chinabugotech hutool before 5.8.4 allowing attackers to execute arbitrary expressions that lead to arbitrary method invocation and potentially remote code execution (RCE) via the QLExpressEngine class.