CVE-2025-41242

MEDIUM NUCLEI LAB

Org.springframework Spring-webmvc < 6.2.10 - Path Traversal

Title source: rule

Description

Spring Framework MVC applications can be vulnerable to a “Path Traversal Vulnerability” when deployed on a non-compliant Servlet container. An application can be vulnerable when all the following are true: * the application is deployed as a WAR or with an embedded Servlet container * the Servlet container does not reject suspicious sequences https://jakarta.ee/specifications/servlet/6.1/jakarta-servlet-spec-6.1.html#uri-path-canonicalization * the application serves static resources https://docs.spring.io/spring-framework/reference/web/webmvc/mvc-config/static-resources.html#page-title with Spring resource handling We have verified that applications deployed on Apache Tomcat or Eclipse Jetty are not vulnerable, as long as default security features are not disabled in the configuration. Because we cannot check exploits against all Servlet containers and configuration variants, we strongly recommend upgrading your application.

Exploits (1)

nomisec WORKING POC

by HORKimhab · poc

https://github.com/HORKimhab/CVE-2025-41242

View Code ZIP pw:eip

Nuclei Templates (1)

Spring Framework - Path Traversal

MEDIUMVERIFIEDby DhiyaneshDk

References (1)

Core 1

Core References

Vendor Advisory

http://spring.io/security/cve-2025-41242

Scores

CVSS v3 5.9

EPSS 0.0659

EPSS Percentile 91.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Lab Environment

COMMUNITY

Community Lab

docker pull vulhub/spring-boot-jetty:3.2.4

https://github.com/HORKimhab/CVE-2025-41242

View in Library

Details

CWE

CWE-22

Status published

Products (4)

org.springframework/spring-webmvc 6.2.0 - 6.2.10Maven

VMware/Spring Framework 5.3.x - 5.3.44

VMware/Spring Framework 6.1.x - 6.1.22

VMware/Spring Framework 6.2.x - 6.2.10

Published Aug 18, 2025

Tracked Since Feb 18, 2026