Vulnerability Details CVE-2025-44033
SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the allDirector() method declaration in src/main/java/cn/gson/oasys/mappers/AddressMapper.java
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.9%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2025-44033
-
cpe:2.3:a:aaluoxiang:oasys:1.1