Login Sign Up

CVE-2025-15123

3.1 LOW
Authentication Bypass

📋 TL;DR

JeecgBoot up to version 3.9.0 contains an improper authorization vulnerability in the /sys/sysDepartPermission/datarule/ endpoint. This allows remote attackers to potentially bypass intended access controls, though exploitation requires high complexity. Organizations using vulnerable JeecgBoot versions are affected.

💻 Affected Systems

Products:
  • JeecgBoot
Versions: Up to and including 3.9.0
Operating Systems: All platforms running JeecgBoot
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the /sys/sysDepartPermission/datarule/ endpoint specifically.

📦 What is this software?

Jeecg Boot by Jeecg

View all CVEs affecting Jeecg Boot →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could gain unauthorized access to sensitive data or administrative functions by bypassing authorization controls.

🟠

Likely Case

Limited information disclosure or unauthorized access to specific functions due to the high complexity requirement.

🟢

If Mitigated

Minimal impact with proper network segmentation and access controls in place.

🌐 Internet-Facing: MEDIUM - Attack can be launched remotely but requires high complexity and specific conditions.
🏢 Internal Only: LOW - Internal systems with proper network controls face reduced risk.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: HIGH

Exploit has been publicly disclosed but requires high complexity to execute successfully.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available - vendor did not respond to disclosure

Restart Required: No

Instructions:

No official patch available. Consider upgrading to any version beyond 3.9.0 if available, or implement workarounds.

🔧 Temporary Workarounds

Block vulnerable endpoint

all

Restrict access to the /sys/sysDepartPermission/datarule/ endpoint using web application firewall or network controls

# Example for Apache: RewriteRule ^/sys/sysDepartPermission/datarule/.*$ - [F,L]
# Example for Nginx: location ~ ^/sys/sysDepartPermission/datarule/ { deny all; }

Implement strict access controls

all

Apply principle of least privilege and ensure proper authentication/authorization checks

🧯 If You Can't Patch

  • Implement network segmentation to isolate JeecgBoot instances
  • Monitor for unusual access patterns to the vulnerable endpoint

🔍 How to Verify

Check if Vulnerable:

Check JeecgBoot version and verify if /sys/sysDepartPermission/datarule/ endpoint exists and is accessible

Check Version:

# Check JeecgBoot version in application properties or admin interface

Verify Fix Applied:

Verify endpoint is no longer accessible or has proper authorization controls

📡 Detection & Monitoring

Log Indicators:

  • Unusual access patterns to /sys/sysDepartPermission/datarule/
  • Failed authorization attempts

Network Indicators:

  • HTTP requests to /sys/sysDepartPermission/datarule/ from unauthorized sources

SIEM Query:

source="web_server" AND uri="/sys/sysDepartPermission/datarule/" AND (status=200 OR status=403)

📊 Metadata

CVE ID: CVE-2025-15123
CVSS v3 Score: 3.1 (LOW)
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
CWE: CWE-266
EPSS Score: 0.03% exploit probability (8.2th percentile)
Published: December 28, 2025
Last Updated: December 30, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-15123, you might also want to check these:

CVE-2026-23800 10.0

This vulnerability allows attackers to escalate privileges in Modular DS modular-connector WordPress...

Same vulnerability type (CWE-266)
CVE-2026-23550 10.0

This critical vulnerability in Modular DS allows attackers to escalate privileges due to incorrect p...

Same vulnerability type (CWE-266)
CVE-2025-41115 10.0

A critical vulnerability in Grafana's SCIM provisioning allows malicious SCIM clients to provision u...

Same vulnerability type (CWE-266)