Exrick xboot Spring Boot Admin/Spring Actuator information disclosure_CVE-2025-8525

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was found in Exrick xboot up to 3.3.4. It has been classified as problematic. This affects an unknown part of the component Spring Boot Admin/Spring Actuator. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Basic Information

ID CVE-2025-8525

Source VulDB

Published Aug 4, 2025 at 20:32

Modified Aug 5, 2025 at 15:44

Affected Product

Vendor Exrick

Product xboot

Version 3.3.0

Affected Versions Exrick xboot 3.3.0
Exrick xboot 3.3.1
Exrick xboot 3.3.2
Exrick xboot 3.3.3
Exrick xboot 3.3.4

CWE Classification

CWE-200 CWE-284

References

{
    "lastseen": "",
    "description": "A vulnerability was found in Exrick xboot up to 3.3.4. It has been classified as problematic. This affects an unknown part of the component Spring Boot Admin/Spring Actuator. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.",
    "published": "2025-08-04T20:32:05.870Z",
    "modified": "2025-08-05T15:44:45.527Z",
    "type": "cve",
    "title": "Exrick xboot Spring Boot Admin/Spring Actuator information disclosure",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.318651\nhttps://vuldb.com/?ctiid.318651\nhttps://vuldb.com/?submit.622172\nhttps://github.com/Exrick/xboot/issues/72\nhttps://github.com/Exrick/xboot/issues/72#issue-3252465914",
    "id": "CVE-2025-8525",
    "bulletinFamily": "",
    "cwe": [
        "CWE-200",
        "CWE-284"
    ],
    "cvelist": null,
    "sourceData": "Exrick xboot 3.3.0\nExrick xboot 3.3.1\nExrick xboot 3.3.2\nExrick xboot 3.3.3\nExrick xboot 3.3.4",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "xboot",
    "version": "3.3.0",
    "vendor": "Exrick",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}