CVE-2025-64164 | Dataease up to 2.10.14 JNDI deserialization (GHSA-q754-4pc2-wjqw)

November 6, 2025 Yanac

A vulnerability identified as critical has been detected in Dataease up to 2.10.14. This affects an unknown part of the component JNDI Handler. This manipulation causes deserialization.

This vulnerability appears as CVE-2025-64164. The attack may be initiated remotely. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More

CVE-2025-60784 | XiaozhangBang Voluntary Like System 8.8 Pay Module /topfirst.php zhekou improper authorization
Mageia 9: binutils Important Memory Corruption Issues MGASA-2025-0262