CRITICAL🇵🇱 Wersja polska

CVE-2025-28406

CVSS 9.8v3.1pub. 2025-04-07upd. 2025-04-09

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the jobLogId parameter

🤖 AI Analysis
How it works

An attacker without any privileges and without user interaction can manipulate the jobLogId parameter in HTTP requests directed to the vulnerable endpoint of the RuoYi application. Improper access control (CWE-284) causes the server to fail to properly verify the caller's privileges, leading to privilege escalation. The attack is possible remotely over the network without the need to have an account in the system.

Impact

An attacker can obtain elevated privileges in the application, resulting in complete loss of confidentiality, integrity, and availability of the system — including the ability to read and modify data as well as disrupt service operation.

Mitigation & patch

Patches available from the vendor should be applied according to references. It is recommended to verify the official RuoYi repository (https://github.com/yangzongzhuan/RuoYi) to obtain the current patched version and restrict access to vulnerable endpoints at the firewall or reverse proxy level until the patch is deployed.

Who is affected

RuoYi v.4.8.0

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ruoyi

    APP
    Ruoyi
    4.8.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References

Related vulnerabilities

CVE-2025-70985CRITICAL9.1PL ✓ten sam produkt

RuoYi v4.8.2 — nieprawidłowa kontrola dostępu w funkcji aktualizacji

CVE-2024-57521CRITICAL10.0PL ✓ten sam produkt

SQL Injection (RCE) w RuoYi v.4.7.9 i wcześniejszych — funkcja createTable

CVE-2025-28405CRITICAL9.8PL ✓ten sam produkt

RuoYi 4.8.0 – privilege escalation przez metodę changeStatus

CVE-2025-28402CRITICAL9.8PL ✓ten sam produkt

Eskalacja uprawnień przez parametr jobId w RuoYi v.4.8.0

CVE-2025-28408CRITICAL9.8PL ✓ten sam produkt

RuoYi 4.8.0 — privilege escalation przez brak walidacji parametru deptId