SAS® Job Monitor Administration contains spring-web libraries with known vulnerabilities


Severity: Critical

Description: SAS Job Monitoring Administration contains a version of spring-web that is known to be affected by CVE-2025-41234 and a version of spring-web-remoting that is known to be affected by CVE-2016-1000027.

Potential Impact: See the CVE records for additional information.