Severity: High

Description: SAS Environment Manager contains versions of third-party libraries (jboss-remoting, hibernate-validator, and commons-lang) with the following known vulnerabilities:

• CVE-2020-35510
• CVE-2025-35036
• CVE-2023-1932
• CVE-2025-48924

​​​​​​Potential Impact: See the CVE records for additional information.