CVE-2025-41253 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-41253 PUBLISHED

De multiples vulnérabilités ont été découvertes dans les produits Spring. Elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données et un contournement de la politique de sécurité.

EPSS 0.04% · 11.4th percentile

Risk Scores

EPSS Score

0.04%

11.4th percentile

Affected Products

Vendor	Product	Versions
Spring	Cloud Gateway Server
Spring	Spring Framework

Timeline

Oct 5, 2023 PoC Published
Apr 28, 2025 PoC Published
Oct 11, 2025 PoC Published
Oct 12, 2025 PoC Published
Oct 16, 2025 CVE Published
Oct 16, 2025 Coalition ESS Score
Oct 16, 2025 PoC Published
Oct 17, 2025 EPSS Score
Oct 17, 2025 PoC Published
Oct 17, 2025 PoC Published
Oct 18, 2025 Coalition ESS Score
Oct 21, 2025 PoC Published

References

https://cert.ssi.gouv.fr/avis/CERTFR-2025-AVI-0883/ advisory
https://spring.io/security/cve-2025-41254 advisory
https://spring.io/security/cve-2025-41253 advisory

Open in Interactive Console →