CVE-2025-10771 | jeecgboot JimuReport up to 2.1.2 DB2 JDBC testConnection clientRerouteServerListJNDIName deserialization (Issue 4117)

A vulnerability was found in jeecgboot JimuReport up to 2.1.2 and classified as critical. Affected is an unknown function of the file /drag/onlDragDataSource/testConnection of the component DB2 JDBC Handler. Executing manipulation of the argument clientRerouteServerListJNDIName can lead to deserialization.

This vulnerability is handled as CVE-2025-10771. The attack can be executed remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More