Checking the Scope of CVE-2025-48927

CVE-2025-48927 is a critical vulnerability in TeleMessage TM SGNL caused by Spring Boot Actuator exposing the /heapdump endpoint without authentication; an attacker can remotely fetch large heap dump files (~150MB) that may contain plaintext usernames, passwords, and archived messages. The report notes many potentially exposed instances on the internet, observed scanning activity targeting actuator endpoints, and recommends blocking actuator endpoints except /health and /info or updating TeleMessage to patched versions.