Severity: High

Description: SAS Environment Manager contains versions of Spring Security, Apache Tomcat, and related frameworks with the following known vulnerabilities: 

• CVE-2025-52520
• CVE-2025-49125
• CVE-2025-48988
• CVE-2025-48924
• CVE-2025-48734
• CVE-2025-46701
• CVE-2025-31651
• CVE-2025-22234 

Potential Impact: Refer to the CVE records for details.