Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/20112?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/20112?format=api", "vulnerability_id": "VCID-1bzt-rfvg-cuan", "summary": "Spring Expression language property modification using Spring Cloud Gateway Server WebFlux\nSpring Cloud Gateway Server Webflux may be vulnerable to Spring Environment property modification.\n\nAn application should be considered vulnerable when all the following are true:\n\n* The application is using Spring Cloud Gateway Server Webflux (Spring Cloud Gateway Server WebMVC is not vulnerable).\n* Spring Boot actuator is a dependency.\n* The Spring Cloud Gateway Server Webflux actuator web endpoint is enabled via management.endpoints.web.exposure.include=gateway.\n* The actuator endpoints are available to attackers.\n* The actuator endpoints are unsecured.", "aliases": [ { "alias": "CVE-2025-41243" }, { "alias": "GHSA-q2cj-h8fw-q4cc" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/69079?format=api", "purl": "pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.3.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.3.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/69072?format=api", "purl": "pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bzt-rfvg-cuan" }, { "vulnerability": "VCID-q91x-cu9t-2uch" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/69073?format=api", "purl": "pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@3.1.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bzt-rfvg-cuan" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@3.1.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/69074?format=api", "purl": "pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bzt-rfvg-cuan" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/69075?format=api", "purl": "pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.1.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bzt-rfvg-cuan" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.1.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/69076?format=api", "purl": "pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bzt-rfvg-cuan" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/69077?format=api", "purl": "pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bzt-rfvg-cuan" }, { "vulnerability": "VCID-q91x-cu9t-2uch" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-webflux@4.3.0" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-41243", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06417", "scoring_system": "epss", "scoring_elements": "0.91189", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-41243" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-41243", "reference_id": "CVE-2025-41243", "reference_type": "", "scores": [ { "value": "10.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-41243" }, { "reference_url": "https://spring.io/security/cve-2025-41243", "reference_id": "CVE-2025-41243", "reference_type": "", "scores": [ { "value": "10", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "10.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-17T03:55:50Z/" } ], "url": "https://spring.io/security/cve-2025-41243" }, { "reference_url": "https://github.com/advisories/GHSA-q2cj-h8fw-q4cc", "reference_id": "GHSA-q2cj-h8fw-q4cc", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-q2cj-h8fw-q4cc" } ], "weaknesses": [ { "cwe_id": 94, "name": "Improper Control of Generation of Code ('Code Injection')", "description": "The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 917, "name": "Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')", "description": "The product constructs all or part of an expression language (EL) statement in a framework such as a Java Server Page (JSP) using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended EL statement before it is executed." } ], "exploits": [], "severity_range_score": "9.0 - 10.0", "exploitability": "0.5", "weighted_severity": "0.1", "risk_score": 0.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1bzt-rfvg-cuan" }