Risk Scores
EPSS Score
0.35%
57.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| VMware Tanzu | VMware Tanzu Spring Security <6.4.6 | |
| IBM | IBM Sterling Connect:Direct <6.4.0.3 | |
| IBM | IBM Sterling Connect:Direct <6.3.0.14 |
Timeline
- May 19, 2025 CVE Published
- May 21, 2025 EPSS Score
- May 23, 2025 Coalition ESS Score
- Jun 1, 2025 EPSS Score
- Jun 11, 2025 EPSS Score
- Jun 22, 2025 EPSS Score
- Jun 26, 2025 CVE Updated
- Jul 2, 2025 EPSS Score
- Jul 13, 2025 EPSS Score
- Jul 24, 2025 EPSS Score
- Jul 25, 2025 Coalition ESS Score
- Aug 3, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1099.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1099 advisory
- https://spring.io/security/cve-2025-41232 advisory
- https://spring.io/blog/2025/05/19/spring-security-6-4-6 advisory
- https://www.ibm.com/support/pages/node/7238295 advisory