CVE-2025-41243
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-16

Last updated on: 2025-09-17

Assigner: VMware

Description
Spring Cloud Gateway Server Webflux may be vulnerable to Spring Environment property modification. An application should be considered vulnerable when all the following are true: * The application is using Spring Cloud Gateway Server Webflux (Spring Cloud Gateway Server WebMVC is not vulnerable). * Spring Boot actuator is a dependency. * The Spring Cloud Gateway Server Webflux actuator web endpoint is enabled via management.endpoints.web.exposure.include=gateway. * The actuator endpoints are available to attackers. * The actuator endpoints are unsecured.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-16
Last Modified
2025-09-17
Generated
2026-05-07
AI Q&A
2025-09-16
EPSS Evaluated
2026-05-05
NVD
CVE-2025-41243
Affected Vendors & Products
Showing 9 associated CPEs
Vendor Product Version / Range
spring spring_cloud_gateway 4.1
spring spring_cloud_gateway 4.2
spring spring_cloud_gateway 4.0
spring spring_cloud_gateway 4.3
spring spring_cloud_gateway 4.1.11
spring spring_cloud_gateway 3.1.11
spring spring_cloud_gateway 4.3.1
spring spring_cloud_gateway 4.2.5
spring spring_cloud_gateway 3.1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-917 The product constructs all or part of an expression language (EL) statement in a framework such as a Java Server Page (JSP) using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended EL statement before it is executed.
CWE-94 The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability occurs in Spring Cloud Gateway Server Webflux when certain conditions are met: the application uses Spring Cloud Gateway Server Webflux with Spring Boot actuator as a dependency, the actuator web endpoint for the gateway is enabled and exposed, and these actuator endpoints are unsecured and accessible to attackers. Under these conditions, attackers may be able to modify Spring Environment properties, potentially leading to severe security issues.


How can this vulnerability impact me? :

If exploited, this vulnerability can have a critical impact, allowing attackers to fully compromise the affected system. The CVSS score of 10.0 indicates it can be exploited remotely without authentication, leading to complete confidentiality, integrity, and availability loss. This means attackers could modify environment properties, potentially causing data breaches, service disruption, or unauthorized control over the application.


What immediate steps should I take to mitigate this vulnerability?

To mitigate this vulnerability, ensure that the Spring Cloud Gateway Server Webflux actuator web endpoint is not exposed or is secured. Specifically, disable or restrict access to the actuator endpoints by not enabling management.endpoints.web.exposure.include=gateway or by securing the actuator endpoints with proper authentication and authorization controls.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart