RCE in Dataease

CVE-2026-53751

DataEase is an open source data visualization and analysis tool. Prior to 2.10.24, the H2 database JDBC URL validation logic can be bypassed with special Unicode characters whose case-conversion behavior differs between DataEase validation…

Vulnerability class: RCE (Remote Code Execution)

Affected products

Weakness classification (CWE)

References