CVE-2026-7710 in yudao-cloud정보

요약

\~에 의해 MITRE • 2026. 05. 04.

A security flaw has been discovered in YunaiV yudao-cloud up to 3.8.0. This affects the function doFilterInternal of the file JwtAuthenticationTokenFilter.java of the component Ruoyi-Vue-Pro. Performing a manipulation of the argument mock-token results in improper authentication. Remote exploitation of the attack is possible. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

VulDB

공개

2026. 05. 04.

모더레이션

수락

항목

VDB-360886

CPE

준비됨

CWE

CWE-287 (확인됨)

익스플로잇

다운로드

CVSS

7.3 (VulDB)

EPSS

0.00097

KEV

아니요

활동

낮음

부문

Lawfirm, Government, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7710
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7710
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7710/

◂ 이전 개요 다음 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!