Browse all 27 CVE security advisories affecting Yonyou. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Yonyou primarily develops enterprise resource planning and cloud-based management software for large organizations, facilitating complex business operations across finance, supply chain, and human resources. Security audits have identified twenty-seven recorded Common Vulnerabilities and Exposures (CVEs) associated with its product suite. Historically, these flaws predominantly involve remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation or improper access controls within its web interfaces. While no single catastrophic public breach has defined the vendor’s recent history, the cumulative nature of these vulnerabilities suggests systemic weaknesses in secure coding practices. The presence of multiple critical severity ratings indicates that attackers could potentially gain unauthorized administrative access or execute arbitrary commands on affected servers. Consequently, organizations relying on Yonyou’s infrastructure must prioritize regular patching and rigorous network segmentation to mitigate the risk of exploitation inherent in these documented security gaps.
CVE-2025-667442026-01-20Showing up to 20 recent security advisories. View all →
This page lists every published CVE security advisory associated with Yonyou. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.