JeecgBoot OpenAPI Improper Authentication Vulnerability

Vulnerability

In JeecgBoot version 3.9.1, a vulnerability exists in the OpenAPI Endpoint component, specifically within an unknown processing of the file '/openapi/call/'. This issue leads to improper authentication, allowing remote exploitation. However, the attack is considered to have a high complexity level, making it difficult to execute.

Impact

Exploitation of this vulnerability could lead to improper authentication, potentially allowing unauthorized access or actions within the application.

Added: May 26, 2026, 8:42 PM

Updated: May 26, 2026, 8:42 PM

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

5.0

exploitability

7.4

remediation

0.0

relevance

9.3

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.8

impact

5.0

exploitability

7.4

remediation

0.0

relevance

9.3

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

JeecgBoot OpenAPI Improper Authentication Vulnerability

Vulnerability

Impact

Affected Products

JeecgBoot

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating