Description
A vulnerability was identified in JeecgBoot up to 3.9.2. The impacted element is an unknown function of the file /airag/airagModel/test. The manipulation of the argument baseUrl leads to server-side request forgery. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. A fix is planned for the upcoming release.
Published: 2026-06-01
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A server-side request forgery vulnerability exists in JeecgBoot up to version 3.9.2. The flaw resides in an unknown function of the /airag/airagModel/test file, where an attacker can manipulate the baseUrl argument. This manipulation causes the application to send requests to arbitrary URLs on behalf of the server, potentially exposing internal resources. The CVSS score is 5.3.

Affected Systems

JeecgBoot applications built with or running versions up to 3.9.2 are affected. The specific affected element is a function within the /airag/airagModel/test file, but the vendor does not list more granular subcomponents.

Risk and Exploitability

The public exploit is available and the attack can be performed remotely. Because the EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog, the exploitation probability is uncertain but the presence of a public exploit raises concern. The vulnerability does not require local code execution or elevated privileges; it relies on remote manipulation of the baseUrl parameter and, if no network restrictions exist, the server can reach internal or external resources. The planned fix in the upcoming release indicates that the vendor is addressing the issue, but until that patch is applied, the risk remains moderate to high for organizations using affected versions.

Generated by OpenCVE AI on June 1, 2026 at 10:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor patch for JeecgBoot when it becomes available
  • Restrict outbound network traffic from the JeecgBoot instance to only necessary destinations, thereby limiting the usefulness of an SSRF attack
  • Implement input validation or whitelist checks for the baseUrl parameter so only approved URLs can be requested

Generated by OpenCVE AI on June 1, 2026 at 10:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 02 Jun 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 01 Jun 2026 09:15:00 +0000

Type Values Removed Values Added
Description A vulnerability was identified in JeecgBoot up to 3.9.2. The impacted element is an unknown function of the file /airag/airagModel/test. The manipulation of the argument baseUrl leads to server-side request forgery. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. A fix is planned for the upcoming release.
Title JeecgBoot test server-side request forgery
First Time appeared Jeecgboot
Jeecgboot jeecgboot
Weaknesses CWE-918
CPEs cpe:2.3:a:jeecgboot:jeecgboot:*:*:*:*:*:*:*:*
Vendors & Products Jeecgboot
Jeecgboot jeecgboot
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:C'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Jeecgboot Jeecgboot
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-02T15:07:35.889Z

Reserved: 2026-05-31T09:56:43.124Z

Link: CVE-2026-10240

cve-icon Vulnrichment

Updated: 2026-06-02T15:07:22.389Z

cve-icon NVD

Status : Deferred

Published: 2026-06-01T09:16:15.827

Modified: 2026-06-01T15:15:37.293

Link: CVE-2026-10240

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-01T11:00:08Z

Weaknesses
  • CWE-918

    Server-Side Request Forgery (SSRF)