CVE-2025-41243
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-16

Last updated on: 2025-09-17

Assigner: VMware

Description
Spring Cloud Gateway Server Webflux may be vulnerable to Spring Environment property modification. An application should be considered vulnerable when all the following are true: * The application is using Spring Cloud Gateway Server Webflux (Spring Cloud Gateway Server WebMVC is not vulnerable). * Spring Boot actuator is a dependency. * The Spring Cloud Gateway Server Webflux actuator web endpoint is enabled via management.endpoints.web.exposure.include=gateway. * The actuator endpoints are available to attackers. * The actuator endpoints are unsecured.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-16
Last Modified
2025-09-17
Generated
2026-06-16
AI Q&A
2025-09-16
EPSS Evaluated
2026-06-14
NVD
CVE-2025-41243
Affected Vendors & Products
Showing 9 associated CPEs
Vendor Product Version / Range
spring spring_cloud_gateway 4.1
spring spring_cloud_gateway 4.2
spring spring_cloud_gateway 4.0
spring spring_cloud_gateway 4.3
spring spring_cloud_gateway 4.1.11
spring spring_cloud_gateway 3.1.11
spring spring_cloud_gateway 4.3.1
spring spring_cloud_gateway 4.2.5
spring spring_cloud_gateway 3.1
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-94 The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
CWE-917 The product constructs all or part of an expression language (EL) statement in a framework such as a Java Server Page (JSP) using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended EL statement before it is executed.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability occurs in Spring Cloud Gateway Server Webflux when certain conditions are met: the application uses Spring Cloud Gateway Server Webflux with Spring Boot actuator as a dependency, the actuator web endpoint for the gateway is enabled and exposed, and these actuator endpoints are unsecured and accessible to attackers. Under these conditions, attackers may be able to modify Spring Environment properties, potentially leading to severe security issues.

Impact Analysis

If exploited, this vulnerability can have a critical impact, allowing attackers to fully compromise the affected system. The CVSS score of 10.0 indicates it can be exploited remotely without authentication, leading to complete confidentiality, integrity, and availability loss. This means attackers could modify environment properties, potentially causing data breaches, service disruption, or unauthorized control over the application.

Mitigation Strategies

To mitigate this vulnerability, ensure that the Spring Cloud Gateway Server Webflux actuator web endpoint is not exposed or is secured. Specifically, disable or restrict access to the actuator endpoints by not enabling management.endpoints.web.exposure.include=gateway or by securing the actuator endpoints with proper authentication and authorization controls.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-41243. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart