Vulnerabilities

CVE-2025-54981

by Fred · 12/12/2025

Weak Encryption Algorithm in StreamPark, The use of an AES cipher in ECB mode and a weak random number generator for encrypting sensitive data, including JWT tokens, may have risked exposing sensitive authentication data

This issue affects Apache StreamPark: from 2.0.0 before 2.1.7.

Users are recommended to upgrade to version 2.1.7, which fixes the issue.

More information : https://lists.apache.org/thread/9rbvdvwg5fdhzjdgyrholgso53r26998

Similar

Tags: Cybersecurity Alert