VYPR

Maven package

io.zipkin/zipkin-server

pkg:maven/io.zipkin/zipkin-server

Vulnerabilities (1)

  • CVE-2025-53602MedJul 4, 2025
    affected <= 3.5.1

    Zipkin through 3.5.1 has a /heapdump endpoint (associated with the use of Spring Boot Actuator), a similar issue to CVE-2025-48927.