Vendor

Jeecg Boot

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2026-9580	Jeecg Boot Jeecg Boot	Hig	0.47	7.3	—	May 26, 2026	A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is the function LoginController.selectDepart of the file /sys/selectDepart. This manipulation causes improper access controls. Remote exploitation of the attack is possible. The exploit has been…
CVE-2026-9581	Jeecg Jeecgboot	Med	0.41	6.3	—	May 26, 2026	A vulnerability was identified in JeecgBoot up to 3.9.1. The impacted element is an unknown function of the file /sys/comment/add. Such manipulation leads to improper access controls. The attack can be executed remotely. The exploit is publicly available and might be used.…
CVE-2026-9579	Jeecg Boot Jeecgboot	Med	0.41	6.3	—	May 26, 2026	A vulnerability was found in JeecgBoot up to 3.9.1. Impacted is the function user.getUsername of the file /sys/user/login/setting/userEdit of the component SysUser. The manipulation of the argument userIdentity results in improper access controls. The attack may be launched…
CVE-2026-9604	Jeecg Jeecgboot	Med	0.28	4.3	—	May 26, 2026	A vulnerability was detected in JeecgBoot up to 3.9.1. This vulnerability affects unknown code of the component AiragModelController. The manipulation of the argument list/queryById results in improper access controls. The attack can be executed remotely. The exploit is now…

CVE-2026-9580HigMay 26, 2026
Jeecg Boot
Jeecg Boot
risk 0.47cvss 7.3epss —
A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is the function LoginController.selectDepart of the file /sys/selectDepart. This manipulation causes improper access controls. Remote exploitation of the attack is possible. The exploit has been…
CVE-2026-9581MedMay 26, 2026
Jeecg
Jeecgboot
risk 0.41cvss 6.3epss —
A vulnerability was identified in JeecgBoot up to 3.9.1. The impacted element is an unknown function of the file /sys/comment/add. Such manipulation leads to improper access controls. The attack can be executed remotely. The exploit is publicly available and might be used.…
CVE-2026-9579MedMay 26, 2026
Jeecg Boot
Jeecgboot
risk 0.41cvss 6.3epss —
A vulnerability was found in JeecgBoot up to 3.9.1. Impacted is the function user.getUsername of the file /sys/user/login/setting/userEdit of the component SysUser. The manipulation of the argument userIdentity results in improper access controls. The attack may be launched…
CVE-2026-9604MedMay 26, 2026
Jeecg
Jeecgboot
risk 0.28cvss 4.3epss —
A vulnerability was detected in JeecgBoot up to 3.9.1. This vulnerability affects unknown code of the component AiragModelController. The manipulation of the argument list/queryById results in improper access controls. The attack can be executed remotely. The exploit is now…