CVE-2025-4175 is a path traversal vulnerability identified in the AlanBinu007 Spring-Boot-Advanced-Projects software, specifically affecting versions 3.1.0 through 3.1.3. The vulnerability resides in the uploadUserProfileImage function within the UserProfileController.java file, part of the Upload Profile API Endpoint. Path traversal vulnerabilities allow an attacker to manipulate file path inputs to access files and directories outside the intended scope, potentially exposing sensitive data or enabling unauthorized file operations. This vulnerability can be exploited remotely without user interaction or authentication, as indicated by the CVSS vector (AV:N/AC:L/AT:N/UI:N/PR:L). The attack requires low privileges (PR:L), meaning an attacker with limited access could exploit it. The CVSS 4.0 base score is 5.3, categorizing it as medium severity. The vulnerability impacts confidentiality, integrity, and availability to a limited extent (VC:L, VI:L, VA:L), suggesting partial compromise potential. The vendor was notified but has not responded, and no patches are currently available. Although no known exploits are reported in the wild, public disclosure increases the risk of exploitation. The vulnerability affects a Java-based backend component that handles user profile image uploads, which is a common feature in web applications built on Spring Boot frameworks. Exploiting this flaw could allow attackers to read or overwrite arbitrary files on the server, potentially leading to data leakage, defacement, or further system compromise.

For European organizations using the affected Spring-Boot-Advanced-Projects versions, this vulnerability poses a moderate risk. Organizations relying on this software for user profile management could face unauthorized access to sensitive files or data leakage if exploited. Given the ability to perform remote exploitation without user interaction, attackers could automate attacks against exposed endpoints. This could lead to exposure of personal data, violating GDPR regulations, and result in reputational damage and financial penalties. Furthermore, if attackers modify or delete files, it could disrupt service availability or integrity, impacting business operations. The lack of vendor response and patches increases the window of exposure. Organizations in sectors with strict data protection requirements, such as finance, healthcare, and government, are particularly at risk. Additionally, since Spring Boot is widely used in enterprise Java applications across Europe, the vulnerability could have a broad impact if the affected component is integrated into production environments.

Immediate mitigation should focus on restricting access to the vulnerable uploadUserProfileImage API endpoint through network-level controls such as firewalls or API gateways, limiting exposure to trusted users or IP ranges. Implement strict input validation and sanitization on file path parameters to prevent traversal sequences (e.g., '../'). Employ runtime application self-protection (RASP) or web application firewalls (WAF) with rules designed to detect and block path traversal attempts. Conduct thorough code reviews and static analysis to identify and remediate similar vulnerabilities in the codebase. Since no official patch is available, consider temporarily disabling the vulnerable upload functionality if feasible. Monitor logs for suspicious file access patterns indicative of exploitation attempts. Plan for an update or patch deployment once the vendor releases a fix or consider migrating to alternative, actively maintained components. Additionally, enforce the principle of least privilege on the server file system to minimize the impact of any successful traversal attack.