PT-2025-15613 · Spring · Spring Cloud Config
Max Brauer
+1
·
Published
2025-04-08
·
Updated
2025-04-12
·
CVE-2025-22232
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Spring Cloud Config versions 3.1.10, 4.0.10, 4.1.6, 4.2.2, and 4.3.0-M3 are not the affected versions, but rather the versions that address the issue.
Since the affected versions are not explicitly mentioned, the correct output is:
Spring Cloud Config (affected versions not specified)
Description:
A release of Spring Cloud Config has been made to address an issue.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Spring Cloud Config