CVE-2025-30001

Published: Oct 10, 2025

Modified: Nov 4, 2025

PUBLISHED

Description

Incorrect Execution-Assigned Permissions vulnerability in Apache StreamPark. This issue affects Apache StreamPark: from 2.1.4 before 2.1.6. Users are recommended to upgrade to version 2.1.6, which fixes the issue.

Vendor	Product	Versions
Apache Software Foundation	Apache StreamPark	affected `2.1.4 - < 2.1.6`

Weaknesses (CWE)

CWE-279

References

https://lists.apache.org/thread/xfmsvhkcnr1831n0w5ovy3p44lsmfb7m

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-30001

Description

Affected Products

Weaknesses (CWE)

References