Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
4DescriptionCVE.org
A security vulnerability has been detected in JeecgBoot 3.9.0/3.9.1. The impacted element is an unknown function of the file jeecg-boot/jeecg-module-system/jeecg-system-biz/src/main/java/org/jeecg/modules/airag/JeecgBizToolsProvider.java of the component AI Chat Module. Such manipulation leads to missing authentication. The attack can be executed remotely. The name of the patch is b7c9aeba7aefda9e008ea8fe4fc3daf08d0c5b39/2c1cc88b8d983868df8c520a343d6ff4369d9e59. It is best practice to apply a patch to resolve this issue. The project fixed the issue with a commit which shall be part of the next official release.
AnalysisAI
Missing authentication in JeecgBoot 3.9.0 and 3.9.1 allows unauthenticated remote attackers to access the AI Chat Module functionality without credential verification. The vulnerability resides in JeecgBizToolsProvider.java within the jeecg-module-system component. Vendor-released patches are available via GitHub commits (b7c9aeba and 2c1cc88b) pending inclusion in the next official release. No public exploit code or active exploitation confirmed at time of analysis, though the low attack complexity (AC:L) and network attack vector (AV:N) with no authentication required (PR:N) indicate trivial exploitation potential.
Technical ContextAI
JeecgBoot is a Java-based low-code development platform. This vulnerability affects the AI Chat Module (jeecg-airag), specifically the JeecgBizToolsProvider.java class in the jeecg-system-biz component. The issue is classified as CWE-306 (Missing Authentication for Critical Function), meaning the affected functionality fails to enforce authentication checks before granting access. The CVSS vector indicates network accessibility (AV:N) with low complexity (AC:L) and no privileges required (PR:N), suggesting the vulnerable endpoint is exposed without proper authentication middleware or access control filters. The affected code paths in JeecgBizToolsProvider.java likely expose AI chat functionality or business tool operations that should be restricted to authenticated users. The CPE identifier confirms impact to the JeecgBoot product, though specific version enumeration is limited in the provided CPE string.
RemediationAI
Apply the vendor-released patches available via GitHub commits b7c9aeba7aefda9e008ea8fe4fc3daf08d0c5b39 and 2c1cc88b8d983868df8c520a343d6ff4369d9e59, accessible through pull request #9463 (https://github.com/jeecgboot/JeecgBoot/pull/9463). These commits introduce authentication enforcement to the affected JeecgBizToolsProvider.java component and are scheduled for inclusion in the next official JeecgBoot release. Organizations unable to immediately apply upstream commits should consider temporary mitigations including disabling the AI Chat Module if not operationally required, implementing reverse proxy authentication controls in front of the affected endpoints, or restricting network access to the JeecgBoot application to trusted IP ranges. Monitor the official JeecgBoot GitHub repository (https://github.com/jeecgboot/JeecgBoot/) for the next tagged release version that will incorporate these security fixes. Verify remediation by testing that previously accessible AI Chat Module endpoints now properly enforce authentication requirements.
Oracle Java SE 7 Update 6 and earlier contains multiple sandbox bypass vulnerabilities via the ClassFinder and forName m
Remote code execution in IBM Sterling B2B Integrator, Sterling Integrator, and Tivoli Common Reporting allows unauthenti
Java Runtime Environment sandbox bypass via incorrect image channel verification in 2D component allows remote unauthent
Oracle Java SE JDK/JRE 7 and 6 Update 27 and earlier allows remote code execution with complete system compromise throug
JBoss Seam 2 in Red Hat JBoss EAP 4.3.0 fails to sanitize JBoss Expression Language inputs, allowing remote attackers to
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 up
Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute arbitrary code by (1) using
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Up
The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allow
Remote unauthenticated attackers can execute arbitrary code on Adobe ColdFusion servers through Java deserialization fla
The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets parameter values as OGNL expressions during
Same technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-19162