Yonyou Ufida Nc
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Yonyou Ufida Nc.
By the Year
In 2026 there have been 0 vulnerabilities in Yonyou Ufida Nc. Last year, in 2025 Ufida Nc had 1 security vulnerability published. Right now, Ufida Nc is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 7.50 |
It may take a day or so for new Ufida Nc vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Yonyou Ufida Nc Security Vulnerabilities
Yonyou UFIDA NC 6.5 <RCE via bsh.servlet.BshServlet>
CVE-2025-34039
- June 24, 2025
A code injection vulnerability exists in Yonyou UFIDA NC v6.5 and prior due to the exposure of the BeanShell testing servlet (bsh.servlet.BshServlet) without proper access controls. The servlet allows unauthenticated remote attackers to execute arbitrary Java code via the bsh.script parameter. This can be exploited to run system commands and ultimately gain full control over the target server. The issue is rooted in a third-party JAR component bundled with the application, and the servlet is accessible without authentication on vulnerable installations. Exploitation evidence was observed by the Shadowserver Foundation on 2025-02-05 UTC.
Missing Authentication for Critical Function
Yongyou UFIDA-NC PrintTemplateFileServlet Path Traversal CVE-2023-4748
CVE-2023-4748
7.5 - High
- September 05, 2023
A vulnerability, which was classified as critical, has been found in Yongyou UFIDA-NC up to 20230807. This issue affects some unknown processing of the file PrintTemplateFileServlet.java. The manipulation of the argument filePath leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-238637 was assigned to this vulnerability.
Directory traversal
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Yonyou Ufida Nc or by Yonyou? Click the Watch button to subscribe.
