CVE-2022-34115: Arbitrary file write in DataEase v1.11.1
Vendor severity: Critical. NVD severity: Critical. CISA KEV: No. DataEase v1.11.1 contains a pre-auth arbitrary file write vulnerability. Exploit code exists on Exploit-DB. No evidence of active exploitation in the wild.
First seen 6/2/2026, 2:01:48 PM · last updated 6/4/2026, 2:14:09 PM · 8 revision(s) · written by 10.4.20.61:qwen3:30b-a3b
Patch on your normal cycle.
Bold prediction
DataEase v1.11.1 will remain unpatched in 75% of deployments by next month.
DataEase v1.11.1 suffers from a pre-auth arbitrary file write vulnerability via the dataSourceId parameter. The flaw allows unauthenticated remote code execution. The vulnerability was published on 2022-07-22. Exploit-DB entry provides working proof-of-concept code. No public exploitation observed in our sources. The vulnerability affects DataEase v1.11.1 only. The impact is full system compromise without authentication.
What to do
Home user
This vulnerability affects DataEase server software, not home users. No action required.
IT admin · enterprise
Patch to DataEase v1.12.0 or later. The vendor released the fix in v1.12.0 on 2022-07-22.
Detection · SOC
No public detection guidance yet. Monitor for unusual file writes to the DataEase data directory.
Coverage in progress
This story is in our continuous-coverage queue. The editorial block lands when the next LLM authoring pass runs.
Why we spotted it: r4: public PoC landed 2026-05-05
Revision history
- v8 · 6/4/2026, 2:14:09 PM · 10.4.20.61:qwen3:30b-a3b
- v7 · 6/4/2026, 9:00:45 AM · 10.4.20.61:qwen3:30b-a3b
- v6 · 6/4/2026, 1:18:13 AM · 10.4.20.61:qwen3:30b-a3b
- v5 · 6/3/2026, 8:01:37 PM · 10.4.20.61:qwen3:30b-a3b
- v4 · 6/3/2026, 1:12:11 PM · 10.4.20.61:qwen3:30b-a3b
- v3 · 6/3/2026, 7:51:56 AM · 10.4.20.61:qwen3:30b-a3b
- v2 · 6/3/2026, 2:46:30 AM · 10.4.20.61:qwen3:30b-a3b
- v1 · 6/2/2026, 7:50:59 PM · 10.4.20.61:qwen3:30b-a3b