1. Spring Boot Undertow Starter 2.7.1 Jar Flagged With 22 Vulnerabilities, CVSS 9.6 Reachable Exposure in Undertow-Core 2.2.18.Final
A security scan has flagged the spring-boot-starter-undertow-2.7.1.jar dependency as carrying 22 vulnerabilities, with the highest reaching a critical CVSS score of 9.6. The most severe flaw, tracked as CVE-2025-12543, resides in the bundled undertow-core-2.2.18.Final.jar component and carries a "reachable" classificat...