CVE-2025-54947 | Apache StreamPark up to 2.1.6 hard-coded key

December 12, 2025 Yanac

A vulnerability labeled as problematic has been found in Apache StreamPark up to 2.1.6. Impacted is an unknown function. Executing manipulation can lead to use of hard-coded cryptographic key
.

This vulnerability is registered as CVE-2025-54947. It is possible to launch the attack remotely. No exploit is available.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2025-54981 | Apache StreamPark up to 2.1.6 risky encryption
CVE-2025-14581 | HAPPY Plugin up to 1.0.9 on WordPress Support Ticket submit_form_reply happy_topic_id authorization