Risk Scores
EPSS Score
0.04%
11.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| VMware Tanzu | VMware Tanzu Spring Security <6.2.10 | |
| Red Hat | Red Hat OpenShift Developer Tools and Services 4.13 | |
| Atlassian | Atlassian Jira <10.7.2 | |
| Atlassian | Atlassian Bitbucket <10.0.2 | |
| NetApp | NetApp ActiveIQ Unified Manager for Microsoft Windows | |
| Open Source | Open Source Camunda <7.23.0 | |
| NetApp | NetApp ActiveIQ Unified Manager for VMware vSphere | |
| Red Hat | Red Hat OpenShift Developer Tools and Services 4.12 | |
| VMware Tanzu | VMware Tanzu Spring Security <6.0.16 | |
| NetApp | NetApp ActiveIQ Unified Manager for Linux | |
| VMware Tanzu | VMware Tanzu Spring Security <6.1.14 | |
| Red Hat | Red Hat OpenShift Developer Tools and Services 4.18 | |
| VMware Tanzu | VMware Tanzu Spring Security <6.4.4 | |
| Atlassian | Atlassian Jira <9.12.25 (LTS) | |
| Red Hat | Red Hat Integration | |
| IBM | IBM Operational Decision Manager | |
| Atlassian | Atlassian Bitbucket <9.4.13 (LTS) | |
| Atlassian | Atlassian Jira <10.3.8 (LTS) | |
| VMware Tanzu | VMware Tanzu Spring Security <6.3.8 | |
| Red Hat | Red Hat OpenShift Developer Tools and Services 4.14 |
…and 8 more
Timeline
- Mar 19, 2025 CVE Published
- Mar 20, 2025 PoC Published
- Mar 21, 2025 PoC Published
- Mar 21, 2025 PoC Published
- Mar 21, 2025 PoC Published
- Mar 24, 2025 Coalition ESS Score
- Mar 24, 2025 PoC Published
- Mar 24, 2025 PoC Published
- Mar 24, 2025 PoC Published
- Mar 25, 2025 EPSS Score
- Mar 28, 2025 Coalition ESS Score
- Apr 3, 2025 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0602.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0602 advisory
- https://spring.io/blog/2025/03/19/spring-security-6-3-8-6-4-4-are-now-available advisory
- https://spring.io/security/cve-2025-22223 advisory
- https://spring.io/security/cve-2025-22228 advisory
- https://access.redhat.com/errata/RHSA-2025:3543 advisory
- https://docs.camunda.org/security/notices/#notice-133 advisory
- https://security.netapp.com/advisory/ntap-20250425-0009/ advisory
- https://confluence.atlassian.com/security/security-bulletin-june-17-2025-1574012717.html advisory
- https://access.redhat.com/errata/RHSA-2025:10104 advisory
- https://access.redhat.com/errata/RHSA-2025:10120 advisory
- https://access.redhat.com/errata/RHSA-2025:10097 advisory
- https://access.redhat.com/errata/RHSA-2025:10098 advisory
- https://access.redhat.com/errata/RHSA-2025:10092 advisory
- https://access.redhat.com/errata/RHSA-2025:10118 advisory
- https://access.redhat.com/errata/RHSA-2025:10119 advisory
- https://confluence.atlassian.com/security/security-bulletin-july-15-2025-1590658642.html advisory
- https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2025-127/index.html advisory
- https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html advisory
- https://www.ibm.com/support/pages/node/7252567 advisory