Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for U8 Cloud by Yonyou

    CVE-2025-14185 (GCVE-0-2025-14185)

    Vulnerability from nvd – Published: 2025-12-07 05:02 – Updated: 2025-12-08 17:12
    VLAI
    Title
    Yonyou U8 Cloud AppServletService.class sql injection
    Summary
    A vulnerability was identified in Yonyou U8 Cloud 5.0/5.0sp/5.1/5.1sp. The affected element is an unknown function of the file nc/pubitf/erm/mobile/appservice/AppServletService.class. Such manipulation of the argument usercode leads to sql injection. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.334605 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.334605 signaturepermissions-required
    https://vuldb.com/?submit.698601 third-party-advisory
    https://github.com/798xuezhiqian-collab/vuln01 exploit
    Impacted products
    Vendor Product Version
    Yonyou U8 Cloud Affected: 5.0
    Affected: 5.0sp
    Affected: 5.1
    Affected: 5.1sp
    Create a notification for this product.
    Credits
    paatiw (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-14185",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-12-08T17:03:24.412102Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-12-08T17:12:57.821Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "U8 Cloud",
              "vendor": "Yonyou",
              "versions": [
                {
                  "status": "affected",
                  "version": "5.0"
                },
                {
                  "status": "affected",
                  "version": "5.0sp"
                },
                {
                  "status": "affected",
                  "version": "5.1"
                },
                {
                  "status": "affected",
                  "version": "5.1sp"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "paatiw (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was identified in Yonyou U8 Cloud 5.0/5.0sp/5.1/5.1sp. The affected element is an unknown function of the file nc/pubitf/erm/mobile/appservice/AppServletService.class. Such manipulation of the argument usercode leads to sql injection. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-74",
                  "description": "Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-12-07T05:02:05.601Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-334605 | Yonyou U8 Cloud AppServletService.class sql injection",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.334605"
            },
            {
              "name": "VDB-334605 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.334605"
            },
            {
              "name": "Submit #698601 | Yonyou Network Technology Co., Ltd. U8 Cloud 5.0,5.0sp,5.1,5.1sp SQL Injection",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.698601"
            },
            {
              "tags": [
                "exploit"
              ],
              "url": "https://github.com/798xuezhiqian-collab/vuln01"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-12-06T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-12-06T01:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-12-06T14:57:15.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "Yonyou U8 Cloud AppServletService.class sql injection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-14185",
        "datePublished": "2025-12-07T05:02:05.601Z",
        "dateReserved": "2025-12-06T13:52:01.403Z",
        "dateUpdated": "2025-12-08T17:12:57.821Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-12344 (GCVE-0-2025-12344)

    Vulnerability from nvd – Published: 2025-10-28 01:32 – Updated: 2025-10-28 14:07
    VLAI
    Title
    Yonyou U8 Cloud Request Header NCloudGatewayServlet unrestricted upload
    Summary
    A vulnerability has been found in Yonyou U8 Cloud up to 5.1sp. The impacted element is an unknown function of the file /service/NCloudGatewayServlet of the component Request Header Handler. Such manipulation of the argument ts/sign leads to unrestricted upload. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.330129 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.330129 signaturepermissions-required
    https://vuldb.com/?submit.674532 third-party-advisory
    https://github.com/IceSc0rpion/CVE/issues/1 exploitissue-tracking
    Impacted products
    Vendor Product Version
    Yonyou U8 Cloud Affected: 2.0
    Affected: 2.1
    Affected: 2.3
    Affected: 2.5
    Affected: 2.6
    Affected: 2.7
    Affected: 2.65
    Affected: 3.0
    Affected: 3.1
    Affected: 3.2
    Affected: 3.5
    Affected: 3.6
    Affected: 3.6sp
    Affected: 5.0
    Affected: 5.0sp
    Affected: 5.1
    Affected: 5.1sp
    Create a notification for this product.
    Credits
    IceSc0rpion (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-12344",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T14:06:32.389601Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T14:07:12.828Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "modules": [
                "Request Header Handler"
              ],
              "product": "U8 Cloud",
              "vendor": "Yonyou",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.0"
                },
                {
                  "status": "affected",
                  "version": "2.1"
                },
                {
                  "status": "affected",
                  "version": "2.3"
                },
                {
                  "status": "affected",
                  "version": "2.5"
                },
                {
                  "status": "affected",
                  "version": "2.6"
                },
                {
                  "status": "affected",
                  "version": "2.7"
                },
                {
                  "status": "affected",
                  "version": "2.65"
                },
                {
                  "status": "affected",
                  "version": "3.0"
                },
                {
                  "status": "affected",
                  "version": "3.1"
                },
                {
                  "status": "affected",
                  "version": "3.2"
                },
                {
                  "status": "affected",
                  "version": "3.5"
                },
                {
                  "status": "affected",
                  "version": "3.6"
                },
                {
                  "status": "affected",
                  "version": "3.6sp"
                },
                {
                  "status": "affected",
                  "version": "5.0"
                },
                {
                  "status": "affected",
                  "version": "5.0sp"
                },
                {
                  "status": "affected",
                  "version": "5.1"
                },
                {
                  "status": "affected",
                  "version": "5.1sp"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "IceSc0rpion (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability has been found in Yonyou U8 Cloud up to 5.1sp. The impacted element is an unknown function of the file /service/NCloudGatewayServlet of the component Request Header Handler. Such manipulation of the argument ts/sign leads to unrestricted upload. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way."
            },
            {
              "lang": "de",
              "value": "Es wurde eine Schwachstelle in Yonyou U8 Cloud up to 5.1sp entdeckt. Betroffen hiervon ist ein unbekannter Ablauf der Datei /service/NCloudGatewayServlet der Komponente Request Header Handler. Durch das Beeinflussen des Arguments ts/sign mit unbekannten Daten kann eine unrestricted upload-Schwachstelle ausgenutzt werden. Der Angriff kann remote ausgef\u00fchrt werden. Die Ausnutzung wurde ver\u00f6ffentlicht und kann verwendet werden."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-434",
                  "description": "Unrestricted Upload",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-284",
                  "description": "Improper Access Controls",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-28T01:32:05.689Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-330129 | Yonyou U8 Cloud Request Header NCloudGatewayServlet unrestricted upload",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.330129"
            },
            {
              "name": "VDB-330129 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.330129"
            },
            {
              "name": "Submit #674532 | yonyon U8 Cloud V2.0/V2.1/V2.3/V2.5/V2.6/V2.7/V2.65/V3.0/V3.1/V3.2/V3.5/V3.6/V3.6sp/V5.0/V5.0sp/V5.1/V5.1sp File upload",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.674532"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/IceSc0rpion/CVE/issues/1"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-27T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-10-27T01:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-10-27T15:03:30.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "Yonyou U8 Cloud Request Header NCloudGatewayServlet unrestricted upload"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-12344",
        "datePublished": "2025-10-28T01:32:05.689Z",
        "dateReserved": "2025-10-27T13:58:08.578Z",
        "dateUpdated": "2025-10-28T14:07:12.828Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-14185 (GCVE-0-2025-14185)

    Vulnerability from cvelistv5 – Published: 2025-12-07 05:02 – Updated: 2025-12-08 17:12
    VLAI
    Title
    Yonyou U8 Cloud AppServletService.class sql injection
    Summary
    A vulnerability was identified in Yonyou U8 Cloud 5.0/5.0sp/5.1/5.1sp. The affected element is an unknown function of the file nc/pubitf/erm/mobile/appservice/AppServletService.class. Such manipulation of the argument usercode leads to sql injection. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.334605 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.334605 signaturepermissions-required
    https://vuldb.com/?submit.698601 third-party-advisory
    https://github.com/798xuezhiqian-collab/vuln01 exploit
    Impacted products
    Vendor Product Version
    Yonyou U8 Cloud Affected: 5.0
    Affected: 5.0sp
    Affected: 5.1
    Affected: 5.1sp
    Create a notification for this product.
    Credits
    paatiw (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-14185",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-12-08T17:03:24.412102Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-12-08T17:12:57.821Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "U8 Cloud",
              "vendor": "Yonyou",
              "versions": [
                {
                  "status": "affected",
                  "version": "5.0"
                },
                {
                  "status": "affected",
                  "version": "5.0sp"
                },
                {
                  "status": "affected",
                  "version": "5.1"
                },
                {
                  "status": "affected",
                  "version": "5.1sp"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "paatiw (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was identified in Yonyou U8 Cloud 5.0/5.0sp/5.1/5.1sp. The affected element is an unknown function of the file nc/pubitf/erm/mobile/appservice/AppServletService.class. Such manipulation of the argument usercode leads to sql injection. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-74",
                  "description": "Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-12-07T05:02:05.601Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-334605 | Yonyou U8 Cloud AppServletService.class sql injection",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.334605"
            },
            {
              "name": "VDB-334605 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.334605"
            },
            {
              "name": "Submit #698601 | Yonyou Network Technology Co., Ltd. U8 Cloud 5.0,5.0sp,5.1,5.1sp SQL Injection",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.698601"
            },
            {
              "tags": [
                "exploit"
              ],
              "url": "https://github.com/798xuezhiqian-collab/vuln01"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-12-06T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-12-06T01:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-12-06T14:57:15.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "Yonyou U8 Cloud AppServletService.class sql injection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-14185",
        "datePublished": "2025-12-07T05:02:05.601Z",
        "dateReserved": "2025-12-06T13:52:01.403Z",
        "dateUpdated": "2025-12-08T17:12:57.821Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-12344 (GCVE-0-2025-12344)

    Vulnerability from cvelistv5 – Published: 2025-10-28 01:32 – Updated: 2025-10-28 14:07
    VLAI
    Title
    Yonyou U8 Cloud Request Header NCloudGatewayServlet unrestricted upload
    Summary
    A vulnerability has been found in Yonyou U8 Cloud up to 5.1sp. The impacted element is an unknown function of the file /service/NCloudGatewayServlet of the component Request Header Handler. Such manipulation of the argument ts/sign leads to unrestricted upload. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.330129 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.330129 signaturepermissions-required
    https://vuldb.com/?submit.674532 third-party-advisory
    https://github.com/IceSc0rpion/CVE/issues/1 exploitissue-tracking
    Impacted products
    Vendor Product Version
    Yonyou U8 Cloud Affected: 2.0
    Affected: 2.1
    Affected: 2.3
    Affected: 2.5
    Affected: 2.6
    Affected: 2.7
    Affected: 2.65
    Affected: 3.0
    Affected: 3.1
    Affected: 3.2
    Affected: 3.5
    Affected: 3.6
    Affected: 3.6sp
    Affected: 5.0
    Affected: 5.0sp
    Affected: 5.1
    Affected: 5.1sp
    Create a notification for this product.
    Credits
    IceSc0rpion (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-12344",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T14:06:32.389601Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T14:07:12.828Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "modules": [
                "Request Header Handler"
              ],
              "product": "U8 Cloud",
              "vendor": "Yonyou",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.0"
                },
                {
                  "status": "affected",
                  "version": "2.1"
                },
                {
                  "status": "affected",
                  "version": "2.3"
                },
                {
                  "status": "affected",
                  "version": "2.5"
                },
                {
                  "status": "affected",
                  "version": "2.6"
                },
                {
                  "status": "affected",
                  "version": "2.7"
                },
                {
                  "status": "affected",
                  "version": "2.65"
                },
                {
                  "status": "affected",
                  "version": "3.0"
                },
                {
                  "status": "affected",
                  "version": "3.1"
                },
                {
                  "status": "affected",
                  "version": "3.2"
                },
                {
                  "status": "affected",
                  "version": "3.5"
                },
                {
                  "status": "affected",
                  "version": "3.6"
                },
                {
                  "status": "affected",
                  "version": "3.6sp"
                },
                {
                  "status": "affected",
                  "version": "5.0"
                },
                {
                  "status": "affected",
                  "version": "5.0sp"
                },
                {
                  "status": "affected",
                  "version": "5.1"
                },
                {
                  "status": "affected",
                  "version": "5.1sp"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "IceSc0rpion (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability has been found in Yonyou U8 Cloud up to 5.1sp. The impacted element is an unknown function of the file /service/NCloudGatewayServlet of the component Request Header Handler. Such manipulation of the argument ts/sign leads to unrestricted upload. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way."
            },
            {
              "lang": "de",
              "value": "Es wurde eine Schwachstelle in Yonyou U8 Cloud up to 5.1sp entdeckt. Betroffen hiervon ist ein unbekannter Ablauf der Datei /service/NCloudGatewayServlet der Komponente Request Header Handler. Durch das Beeinflussen des Arguments ts/sign mit unbekannten Daten kann eine unrestricted upload-Schwachstelle ausgenutzt werden. Der Angriff kann remote ausgef\u00fchrt werden. Die Ausnutzung wurde ver\u00f6ffentlicht und kann verwendet werden."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-434",
                  "description": "Unrestricted Upload",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-284",
                  "description": "Improper Access Controls",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-28T01:32:05.689Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-330129 | Yonyou U8 Cloud Request Header NCloudGatewayServlet unrestricted upload",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.330129"
            },
            {
              "name": "VDB-330129 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.330129"
            },
            {
              "name": "Submit #674532 | yonyon U8 Cloud V2.0/V2.1/V2.3/V2.5/V2.6/V2.7/V2.65/V3.0/V3.1/V3.2/V3.5/V3.6/V3.6sp/V5.0/V5.0sp/V5.1/V5.1sp File upload",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.674532"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/IceSc0rpion/CVE/issues/1"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-27T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-10-27T01:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-10-27T15:03:30.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "Yonyou U8 Cloud Request Header NCloudGatewayServlet unrestricted upload"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-12344",
        "datePublished": "2025-10-28T01:32:05.689Z",
        "dateReserved": "2025-10-27T13:58:08.578Z",
        "dateUpdated": "2025-10-28T14:07:12.828Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }