CVE-2025-48927

Beschreibung

The TeleMessage service through 2025-05-05 configures Spring Boot Actuator with an exposed heap dump endpoint at a /heapdump URI, as exploited in the wild in May 2025.

Schweregrad: MEDIUM

CVSS-Score: 5.3