CVE-2025-22246

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-22246
Cloud Foundry UAA release versions from v77.21.0 to v7.31.0 are vulnerable to a private key exposure in logs.

3.0 /10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 0.5 / Impact : 2.5

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://www.cloudfoundry.org/blog/cve-2025-22246-uaa-private-key-exposure/
Configurations

No configuration.

History

13 May 2025, 14:15

Type Values Removed Values Added
CWE CWE-532
Summary
  • (es) Las versiones de lanzamiento de Cloud Foundry UAA de v77.21.0 a v7.31.0 son vulnerables a una exposición de clave privada en los registros.

13 May 2025, 06:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-05-13 06:15

Updated : 2025-05-13 19:35

NVD link : CVE-2025-22246

Mitre link : CVE-2025-22246

CVE.ORG link : CVE-2025-22246

JSON object : View

Products Affected

No product.

CWE
CWE-532

Insertion of Sensitive Information into Log File