CVE-2025-8738

Source
https://cve.org/CVERecord?id=CVE-2025-8738
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-8738.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-8738
Published
2025-08-08T20:02:05.143Z
Modified
2026-07-15T01:48:54.613183484Z
Severity
  • 5.5 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P CVSS Calculator
Summary
zlt2000 microservices-platform Spring Actuator Interface actuator information disclosure
Details

A vulnerability has been found in zlt2000 microservices-platform up to 6.0.0 and classified as problematic. This vulnerability affects unknown code of the file /actuator of the component Spring Actuator Interface. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Database specific
{
    "cwe_ids": [
        "CWE-200",
        "CWE-284"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/8xxx/CVE-2025-8738.json",
    "cna_assigner": "VulDB"
}
References

Affected packages

Git / github.com/zlt2000/microservices-platform

Affected ranges

Type
GIT
Repo
https://github.com/zlt2000/microservices-platform
Events
Database specific
{
    "extracted_events": [
        {
            "introduced": "6.0"
        },
        {
            "last_affected": "6.0"
        }
    ],
    "source": "AFFECTED_FIELD"
}

Affected versions

6.*
6.0
v6.*
v6.0.0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-8738.json"