CVE-2025-41248

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Spring Framework (affected versions not specified)

Description The Spring Security annotation detection mechanism may not correctly resolve annotations on methods within type hierarchies with a parameterized super type. This can lead to an authorization bypass.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-289CWE-863

Related Identifiers

BDU:2025-11287

CVE-2025-41248

GHSA-8V5Q-RHF3-JPHM

Affected Products

Bitbucket

Confluence

Spring Framework

CVE-2025-41248

Weakness Enumeration

Related Identifiers

Affected Products

References · 31