CVE Catalog

CVE-2026-9580

High
Published: Translated: NVD NIST

Summary

A vulnerability was identified in JeecgBoot up to version 3.9.1 in the function LoginController.selectDepart of the file /sys/selectDepart, leading to improper access controls. Remote exploitation of this vulnerability is possible.

Risk Assessment

The organization may be exposed to remote attacks that could lead to unauthorized access to the system.

Recommendation

It is recommended to upgrade to version 3.9.2 to fix this vulnerability.

Original NVD description (English source)

A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is the function LoginController.selectDepart of the file /sys/selectDepart. This manipulation causes improper access controls. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized. Upgrading to version 3.9.2 is sufficient to fix this issue. It is suggested to upgrade the affected component.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS