Severity: Medium

Description: SAS Studio Basic contains versions of Spring Framework and Spring Security with the following known vulnerabilities:

• CVE-2025-22233
• CVE-2025-22234
• CVE-2025-41234

Potential Impact: Refer to the CVE records for details.