CVE-2025-57140: SQL Injection
Published Sep 2, 2025
·Updated
rsbi-pom 4.7 is vulnerable to SQL Injection in the /bi/service/model/DatasetService path.
Affected Software
2 affected components
rsbi rsbi-pom
Ruisitech Ruisibi=4.7
Event History
Sep 2, 2025
CVE Published
via MITRE·12:00 AM
Data Sourced
via MITRE·12:00 AM
Description
Data Sourced
via NVD·12:15 PM
DescriptionSeverityWeaknessAffected Software
Frequently Asked Questions
1
What is the severity of CVE-2025-57140?
CVE-2025-57140 has a high severity due to its potential for SQL Injection, which can lead to unauthorized access to sensitive data.
2
How do I fix CVE-2025-57140?
To fix CVE-2025-57140, update to the latest version of rsbi-pom, as the vulnerability has been patched in subsequent releases.
3
What systems are affected by CVE-2025-57140?
CVE-2025-57140 affects all versions of rsbi-pom prior to the security patch.
4
What kind of attack can be performed using CVE-2025-57140?
An attacker can exploit CVE-2025-57140 to perform SQL Injection, allowing them to execute arbitrary SQL queries against the database.
5
Is CVE-2025-57140 publicly known?
Yes, CVE-2025-57140 is publicly known and has been documented in various security advisories and databases.