VYPR
Medium severity5.9OSV Advisory· Published Aug 20, 2025· Updated Apr 15, 2026

CVE-2025-8415

CVE-2025-8415

Description

A vulnerability was found in the Cryostat HTTP API. Cryostat's HTTP API binds to all network interfaces, allowing possible external visibility and access to the API port if Network Policies are disabled, allowing an unauthenticated, malicious attacker to jeopardize the environment.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Cryostatio/CryostatOSV2 versions
    v4.0.0, v4.0.0-pre, v4.0.1, …+ 1 more
    • (no CPE)range: v4.0.0, v4.0.0-pre, v4.0.1, …
    • (no CPE)range: <4.0.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.