Critical severityGHSA Advisory· Published May 14, 2025· Updated Apr 15, 2026
CVE-2025-4641
CVE-2025-4641
Description
Improper Restriction of XML External Entity Reference vulnerability in bonigarcia webdrivermanager WebDriverManager on Windows, MacOS, Linux (XML parsing components modules) allows Data Serialization External Entities Blowup. This vulnerability is associated with program files src/main/java/io/github/bonigarcia/wdm/WebDriverManager.java.
This issue affects webdrivermanager: from 1.0.0 before 6.0.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
io.github.bonigarcia:webdrivermanagerMaven | >= 1.0.0, < 6.1.0 | 6.1.0 |
Affected products
2- Range: >= 1.0.0, < 6.1.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.