CVE-2026-7045 in dynamic-datasource情報

要約

〜によって MITRE • 2026年04月27日

A vulnerability was determined in baomidou dynamic-datasource 2.5.0. Affected by this vulnerability is the function DsSpelExpressionProcessor#doDetermineDatasource of the file dynamic-datasource-spring/src/main/java/com/baomidou/dynamic/datasource/processor/DsSpelExpressionProcessor.java of the component StandardEvaluationContext/SpelExpressionParser. This manipulation causes injection. The attack may be initiated remotely. Patch name: 273fcedaee984c08197c0890f14190b86ab7e0b8. It is recommended to apply a patch to fix this issue.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

VulDB

モデレーション

承諾済み

エントリ

VDB-359624

EPSS

0.00067

KEV

いいえ

アクティビティ

非常低い

ソース

MITREhttps://www.cve.org/CVERecord?id=CVE-2026-7045
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-7045
CVE Detailshttps://www.cvedetails.com/cve/CVE-2026-7045/

概要

Want to stay up to date on a daily basis?

Enable the mail alert feature now!