Zte Zxcloud_goldendb
7 CVEs affecting Zte Zxcloud_goldendb. Latest disclosed: 2025-04-27. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-46579 | High | 8.4 | 2025-04-27 | There is a DDE injection vulnerability in the GoldenDB database product. Attackers can inject DDE expressions through the interface, and when users download an… |
CVE-2025-46580 | High | 7.7 | 2025-04-27 | There is a code-related vulnerability in the GoldenDB database product. Attackers can access system tables to disrupt the normal operation of business SQL. |
CVE-2025-46578 | Medium | 6.5 | 2025-04-27 | There are SQL injection vulnerabilities in multiple interfaces of the GoldenDB database product. Attackers can exploit these interfaces to inject commands and… |
CVE-2025-46577 | Medium | 6.5 | 2025-04-27 | There is a SQL injection vulnerability in the GoldenDB database product. Attackers can inject commands to extract database information. |
CVE-2025-46576 | Medium | 5.4 | 2025-04-27 | There is a Permission Management and Access Control vulnerability in the GoldenDB database product. Attackers can manipulate requests to bypass privilege restr… |
CVE-2025-46575 | Medium | 4.9 | 2025-04-27 | There is an information disclosure vulnerability in the GoldenDB database product. Attackers can exploit error messages to obtain the system's sensitive inform… |
CVE-2025-46574 | Medium | 4.1 | 2025-04-27 | There is an information disclosure vulnerability in the GoldenDB database product. Attackers can exploit error messages to obtain the system's sensitive inform… |