CVE-2025-53602

Name of the Vulnerable Software and Affected Versions: Zipkin versions prior to 3.5.2

Description: The issue is related to the exposure of heap dump information through the "/heapdump" endpoint, which is associated with the use of Spring Boot Actuator. This endpoint is similar to a previously identified issue.

Recommendations: For versions prior to 3.5.2, update to version 3.5.2 or later to resolve the issue. As a temporary workaround, consider disabling the "/heapdump" endpoint until a patch is available.