CVE-2025-27138 | DataEase up to 2.10.5 io.dataease.auth.filter.TokenFilter improper authentication (GHSA-533g-whf8-q637)
A vulnerability classified as critical was found in DataEase up to 2.10.5. This vulnerability affects the function io.dataease.auth.filter.TokenFilter. The manipulation leads to improper authentication.
This vulnerability was named CVE-2025-27138. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.