Security Advisory

CVE-2025-14856

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-18 01:32:07

Last updated 2026-02-24 05:53:39

Assigner VulDB

State PUBLISHED

Description

A security vulnerability has been detected in y_project RuoYi up to 4.8.1. The affected element is an unknown function of the file /monitor/cache/getnames. Such manipulation of the argument fragment leads to code injection. The attack can be executed remotely. The exploit has been disclosed publicly and may be used.

← Browse all CVEs View on cve.org ↗