Security Notes

Important

This release contains a critical issue that was resolved in C2025.6.2. If you are on C2025.5.0 or considering upgrading to it, you should instead upgrade to C2025.6.2. For more information, refer to the C2025.6.2 resolved issues.

The following security vulnerabilities have been addressed in this release.

Vulnerability Name/CVE-ID	Severity	Subject	Issue Type	JIRA
GHSA-vjh7-7g9h-fjfh	CRITICAL	Security Update	Package	ATSCALE-25044
CVE-2024-4068	HIGH	Security Update	Package	ATSCALE-25042
CVE-2025-27152	HIGH	Security Update	Package	ATSCALE-25820
CVE-2023-52428	HIGH	Security Update	Package	ATSCALE-25028
CVE-2024-10039	HIGH	Security Update	Package	ATSCALE-25027
CVE-2023-1370	HIGH	Security Update	Package	ATSCALE-25837
CVE-2024-21538	HIGH	Security Update	Package	ATSCALE-25720
CVE-2020-1938	HIGH	Security Update	Package	ATSCALE-27498
CVE-2025-24970	HIGH	Security Update	Package	ATSCALE-25041
CVE-2024-45590	HIGH	Security Update	Package	ATSCALE-23685
CVE-2021-29425	HIGH	Security Update	Package	ATSCALE-20680
Server-Side Request Forgery (SSRF)	HIGH	Security Update	Pentest	ATSCALE-24608