CVE-2026-9373 – JeecgBoot OpenAPI Endpoint call improper authentication

CVE ID :CVE-2026-9373

Published : May 24, 2026, 10:15 a.m. | 46 minutes ago

Description :A vulnerability has been found in JeecgBoot 3.9.1. This issue affects some unknown processing of the file /openapi/call/ of the component OpenAPI Endpoint. Such manipulation leads to improper authentication. The attack can be executed remotely. A high complexity level is associated with this attack. The exploitability is assessed as difficult. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9376 – JPress UCenter Article Submission Endpoint doWriteSave improper authorization

CVE-2026-9374 – yangzongzhuan RuoYi-Vue Common Upload Endpoint upload FileUploadUtils.upload unrestricted upload

CVE-2026-9372 – ItzCrazyKns Vane Model Provider API route.ts server-side request forgery

CVE-2026-9371 – ItzCrazyKns Vane API route.ts missing authentication