VYPR

Cloud-Starry-Sky Enterprise Edition

by Kingdee

CVEs (2)

  • CVE-2025-6761HigJun 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in Kingdee Cloud-Starry-Sky Enterprise Edition 6.x/7.x/8.x/9.0. It has been rated as critical. Affected by this issue is the function plugin.buildMobilePopHtml of the file \k3\o2o\bos\webapp\action\DynamicForm 4 Action.class of the component Freemarker…

  • CVE-2025-8516MedAug 4, 2025
    risk 0.35cvss 5.3epss 0.01

    A security vulnerability has been detected in Kingdee Cloud-Starry-Sky Enterprise Edition up to 8.2. This issue affects the function BaseServiceFactory.getFileUploadService.deleteFileAction of the file K3Cloud\BBCMallSite\WEB-INF\lib\Kingdee.K3.O2O.Base.WebApp.jar!\kingdee\k3\o2o…