Vulnerability Details CVE-2025-46579
There is a DDE injection vulnerability in the GoldenDB database product. Attackers can inject DDE expressions through the interface, and when users download and open the affected file, the DDE commands can be executed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.9%
CVSS Severity
CVSS v3 Score 8.4
Products affected by CVE-2025-46579
-
cpe:2.3:a:zte:zxcloud_goldendb:*
-
cpe:2.3:a:zte:zxcloud_goldendb:7.2.01.01