CVE-2025-8738 | zlt2000 microservices-platform up to 6.0.0 Spring Actuator Interface /actuator information disclosure (Issue 79)

Inserito da Angelo Barbosa | Ago 8, 2025 | CVE

A vulnerability has been found in zlt2000 microservices-platform up to 6.0.0 and classified as problematic. This vulnerability affects unknown code of the file /actuator of the component Spring Actuator Interface. The manipulation leads to information disclosure.

This vulnerability was named CVE-2025-8738. The attack can be initiated remotely. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

CVE-2025-8738 | zlt2000 microservices-platform up to 6.0.0 Spring Actuator Interface /actuator information disclosure (Issue 79)

Post correlati

CVE-2024-25626 | Yocto Project poky up to 3.1.30/4.0.15/4.3.1 HTTP os command injection (GHSA-75xw-78mm-72r4)

CVE-2024-41015 | Linux Kernel up to 6.10.1 ocfs2_check_dir_entry memory corruption

CVE-2024-52451 | Aaron Robbins Post Ideas Plugin up to 2 on WordPress cross-site request forgery

CVE-2024-29948 | Hikvision DS-7604NXI-K1 up to 4.76.005 build231012 Message out-of-bounds