Improper Authorization Third-Party Dependency in Bitbucket Data Center and Server - CVE-2025-22235

🗓️ 14 Nov 2025 06:28:35Reported by security-metrics-botType

CVE-2025-22235: improper authorization via a third‑party dependency in Bitbucket Data Center and Server; upgrade to 8.19.25 or newer.

Reporter	Title	Published	Views	Family All 42
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM DevOps Solution Workbench	30 Oct 202520:15	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to an Improper Input Validation in Spring [CVE-2025-22235]	28 Aug 202517:08	–	ibm
IBM Security Bulletins	Security Bulletin: EndpointRequest.to() creates a matcher for null/** if the actuator endpoint is disabled or not exposed, which affects IBM watsonx.data	1 Sep 202514:53	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Guardium Data Security Center is affected by multiple vulnerabilities	7 Jul 202517:00	–	ibm
IBM Security Bulletins	Security Bulletin: Remediation of Multiple Spring Vulnerabilities in IBM Library Support for Spring	16 Jan 202609:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Operational Decision Manager for Oct 2025 - Multiple CVEs addressed	26 Nov 202503:13	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Control Center is affected by vulnerabilities in Spring boot and Spring Security	24 Oct 202506:57	–	ibm
Chainguard	CVE-2025-22235 vulnerabilities	1 May 202501:14	–	cgr
Circl	CVE-2025-22235	25 Apr 202507:36	–	circl
CNNVD	VMware Spring Boot 安全漏洞	28 Apr 202500:00	–	cnnvd