CVE-2025-58589 LOW

CVE-2025-58589: Information Disclosure Through Stacktrace

Vendor Sick Ag
Product Baggage Analytics
Weakness CWE-200 · Info exposure
Published October 6, 2025
Last update May 13, 2026
View on NVD All CVEs

CVSS base score

2.7/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

When an error occurs in the application a full stacktrace is provided to the user. The stacktrace lists class and method names as well as other internal information. An attacker thus receives information about the technology used and the structure of the application.

Key dates

02Disclosure timeline

October 6, 2025 CVE published
May 13, 2026 Record updated

Related vulnerabilities

04Related CVE

CVE-2023-30841 Ironic and ironic-inspector deployed within Baremetal Operator may expose as ConfigMaps CVE-2024-10312 Exclusive Addons for Elementor <= 2.7.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates CVE-2025-53728 Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability CVE-2026-22602 OpenProject is Vulnerable to User Enumeration via User ID CVE-2023-0238 Injecting Activity Loads in WARP Mobile Client