VDB
CVE-2025-41253
CVE-2025-41253
PUBLISHED
De multiples vulnérabilités ont été découvertes dans les produits Spring. Elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données et un contournement de la politique de sécurité.
EPSS 0.05% · 15.6th percentile
Risk Scores
EPSS Score
0.05%
15.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Spring | Cloud Gateway Server | |
| Spring | Spring Framework |
Exploit Intelligence
- https://go.dev/cl/724120 (circl)
- https://go.dev/issue/76443 (circl)
- https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc (circl)
- https://pkg.go.dev/vuln/GO-2026-4340 (circl)
- CIRCL seen: CVE-2025-61730 (circl-sighting)
- CIRCL seen: CVE-2025-61730 (circl-sighting)
- CIRCL seen: CVE-2025-61730 (circl-sighting)
- CIRCL seen: CVE-2025-61730 (circl-sighting)
- CIRCL seen: CVE-2025-61730 (circl-sighting)
- CIRCL seen: CVE-2025-61730 (circl-sighting)
…and 285 more exploits
Timeline
- Oct 5, 2023 PoC Published
- Apr 28, 2025 PoC Published
- Oct 11, 2025 PoC Published
- Oct 12, 2025 PoC Published
- Oct 16, 2025 CVE Published
- Oct 16, 2025 Coalition ESS Score
- Oct 16, 2025 PoC Published
- Oct 17, 2025 EPSS Score
- Oct 17, 2025 PoC Published
- Oct 17, 2025 PoC Published
- Oct 18, 2025 Coalition ESS Score
- Oct 21, 2025 PoC Published