Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Yonyou Subscribe
Filtered by product Ufida Product Lifecycle Management
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-41744 1 Yonyou 1 Ufida Product Lifecycle Management 2021-10-28 7.5 HIGH 9.8 CRITICAL
All versions of yongyou PLM are affected by a command injection issue. UFIDA PLM (Product Life Cycle Management) is a strategic management method. It applies a series of enterprise application systems to support the entire process from conceptual design to the end of product life, and the collaborative creation, distribution, application and management of product information across organizations. Yonyou PLM uses jboss by default, and you can access the management control background without authorization An attacker can use this vulnerability to gain server permissions.