Chat now with support

Get Live Help
Complete Registration

Sign In

Request Pricing

Contact Sales

FREE TRIALS

Spring Framework Annotation Detection Vulnerability: CVE-2025-41249 (4381401)

Return

Feedback Submitted

Did this article solve an issue for you?

Select Rating

Title

Spring Framework Annotation Detection Vulnerability: CVE-2025-41249
Description

Security scan identified the following files for Spring Framework 5.3.x < 5.3.45 / 6.1.x < 6.1.23 / 6.2.x < 6.2.11 Annotation Detection Vulnerability (CVE-2025-41249).

Path : [FMS_HOME]/state/cartridge.exploded/Automation-Core-7_3_0_1/vcontrol-core-/spring-core-5.3.42.jar
Installed version : 5.3.42
Fixed version : 5.3.45

Path : [FMS_HOME]/state/cartridge.exploded/ActionPack-Runtime-7_3_0_1/Runtime-/spring-core-5.3.42.jar
Installed version : 5.3.42
Fixed version : 5.3.45
Cause

CVE-2025-41249
https://nvd.nist.gov/vuln/detail/CVE-2025-41249
Resolution

Foglight is not vulnerable to CVE-2025-41249 because it does not use @EnableMethodSecurity feature.

STATUS

This issue has been logged as FOG-11214 and is waiting for a fix in a future release of Foglight.
Defect ID

FOG-11214

Feedback Submitted

Did this article solve an issue for you?

Select Rating

Request a KB Article

Leave a Comment

Recommended Content

Product(s):: Foglight
8.0.0, 7.3.0, 7.1.0, 6.3.0, 6.1.0, 6.0.0, 5.9.8, 5.9.7, 5.9.5, 5.9.4, 5.9.3, 5.9.2, 5.7.5; Foglight Evolve
7.3.0, 7.1.0, 6.3.0, 6.1.0, 6.0.0, 9.3, 9.2, 9.1, 9.0; Foglight for Databases
8.0.0, 7.3.0, 7.1.0, 6.3.0, 6.1.0, 6.0.0, 5.9.7, 5.9.5, 5.9.4, 5.9.3, 5.9.2

Topic(s):: Troubleshooting

Article History:: Created on: 11/26/2025
Last Update on: 11/27/2025

Search All Articles