Dataease
This hub aggregates every CVE we track for Dataease, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
72
CVEs tracked
32
Critical
28
High
0
In CISA KEV
Severity distribution
CRITICAL32HIGH28MEDIUM12
Monthly trend
0
0
2
1
2
2
1
1
3
1
1
6
2
2
3
4
3
0
1
0
4
9
1
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Dataease.
- CVE-2026-8724Dataease Data Dashboard SqlparserUtils.java SqlparserUtils.transFilter sql injection4.7
- CVE-2026-40901DataEase: Quartz Deserialization → Remote Code Execution8.8
- CVE-2026-40900DataEase has SQL Injection via Stacked Queries8.8
- CVE-2026-40899DataEase has an Arbitrary File Read Vulnerability6.5
- CVE-2026-33207DataEase SQL Injection Vulnerability8.8
- CVE-2026-33122DataEase has SQL Injection via Datasource Management9.8
- CVE-2026-33121DataEase has SQL Injection via Datasource Save Flow8.8
- CVE-2026-33084DataEase has SQL Injection through its getFieldEnumObj Endpoint8.8
- CVE-2026-33083DataEase has SQL Injection in Order By Clause8.8
- CVE-2026-33082DataEase: SQL Injection in v2 Dataset Export9.8
- CVE-2026-32939DataEase is Vulnerable to H2 JDBC RCE Bypass8.1
- CVE-2026-32140Dataease: Redshift JDBC RCE Bypass8.8
- CVE-2026-32139Dataease: Unfiltered active SVG content leads to Stored XSS5.4
- CVE-2026-32137DataEase SQL Injection Vulnerability8.8
- CVE-2026-23958DataEase Vulnerable to Brute-Force Attack on Admin JWT Secret Derived from Password that Enables Full Account Takeover9.8
Product normalization is registry-driven with AI assist and human review. How it works