|
|
|||
| Rule General Information |
|---|
| Release Date: | 2025-06-04 | |
| Rule Name: | Weaver E-Bridge saveYZJFile Arbitrary File Read Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Weaver E-Bridge is a system integration middleware developed by Shanghai Weaver Company against the backdrop of “Internet Plus” used to bridge open internet resources and enterprise information systems enabling the rapid integration of mobile office applications such as WeChat and DingTalk. There is an arbitrary file read vulnerability in the saveYZJFile interface of Weaver E-Bridge attackers can exploit this vulnerability to read sensitive data on the server. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |