Path traversal in DataEase - CVE-2026-45419
Published: June 18, 2026
Vulnerability identifier: #VU134819
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-45419
CWE-ID: CWE-22
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: DataEase
Affected software:
DataEase
DataEase
Detailed vulnerability description
The vulnerability allows a remote user to write arbitrary files.
The vulnerability exists due to improper limitation of a pathname to a restricted directory in TemplateManageService#save and StaticResourceServer#saveFilesToServe when handling requests to /de2api/templateManage/save with a controllable staticResource parameter. A remote user can send a specially crafted request to write arbitrary files.
The file name and file content are fully controllable through the staticResource parameter, and the file content is transmitted in base64 encoding.
How to mitigate CVE-2026-45419
Install security update from vendor's website.