CVE-2025-2901
Aliases:GHSA-f7jh-m6wp-jm7f
Advisory lineage Upstream: 0 Downstream: 5
This CVE was rejected.
Rejected
CVE-2025-2901 has been rejected
This CVE was rejected by the assigning authority and should not be used for vulnerability tracking.
Published: 28 Mar 2025, 14:06
Last modified:20 Jun 2025, 11:50
Vulnerability Summary
Overall Risk
N/A
Rejected CVSS Score
4.6 MEDIUM
3.1 (osv_maven)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
28 Mar 2025, 14:06
Published
Vulnerability first disclosed
20 Jun 2025, 11:50
Last Modified
Vulnerability information updated
Description
Rejected reason: This vulnerability is redundant to CVE-2025-23366 and CVE-2024-10234.
CVSS Metrics
- v3.1•MEDIUM•Score: 4.6CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Affected Systems
- org.jboss.hal•hal-console
< 3.7.11.Final
References (7)
- https://github.com/hal/console/security/advisories/GHSA-f7jh-m6wp-jm7f
- https://nvd.nist.gov/vuln/detail/CVE-2025-2901
- https://github.com/hal/console/commit/216de3b8aa82ea92df10cc296d88c68467cf2c52
- https://access.redhat.com/security/cve/CVE-2025-2901
- https://bugzilla.redhat.com/show_bug.cgi?id=2355685
- https://github.com/hal/console
- https://github.com/hal/console/releases/tag/v3.7.11