CVE-2025-70829 | THREATINT

Description

An information exposure vulnerability in Datart v1.0.0-rc.3 allows authenticated attackers to access sensitive data via a custom H2 JDBC connection string.

PUBLISHED Reserved 2026-01-09 | Published 2026-02-17 | Updated 2026-02-17 | Assigner mitre

References

github.com/running-elephant/datart

github.com/xiaoxiaoranxxx/CVE-2025-70829

cve.org (CVE-2025-70829)

nvd.nist.gov (CVE-2025-70829)

Download JSON