CVE-2025-57772 | DataEase up to 2.10.11 JDBC Connection getJdbcUrl code injection (EUVD-2025-25711)

A vulnerability, which was classified as critical, has been found in DataEase up to 2.10.11. This vulnerability affects the function getJdbcUrl of the component JDBC Connection Handler. Performing manipulation of the argument JdbcUrl results in code injection.

This vulnerability is reported as CVE-2025-57772. The attack is possible to be carried out remotely. No exploit exists.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More