KEV Entry
CVE-2025-1302
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2026-06-30 00:00 UTC
Characteristics
98.0
Timestamps
2025-11-19
2025-11-19
2026-06-30
Scope
Affected: JSONPath-Plus / JSONPath-plus | Class: web-app-framework | Severity: Critical (CVSS 9.8) | IoT: no | In CISA KEV: no | Honeypot connections on 2026-06-30: 1
References
- {'id': 'CVE-2025-1302', 'url': 'https://www.cve.org/CVERecord?id=CVE-2025-1302'}
- {'id': 'shadowserver', 'url': 'https://www.shadowserver.org/what-we-do/network-reporting/honeypot-exploited-vulnerabilities-report/'}
41f55103-c0ae-4854-8453-465f86704bd3
c8fb6bf1-f81f-4cb8-95b1-eadbb3b54ee8
2026-07-01 05:54 UTC
2026-07-02 01:00 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| honeypot | shadowserver | in_the_wild_attempts | 0.70 |
View details
|
- |