https://www.sentinelone.com/vulnerability-database/cve-2025-23844/
CVE-2025-23844: Custom Widget Classes CSRF Vulnerability
CVE-2025-23844 is a Cross-Site Request Forgery vulnerability in Custom Widget Classes plugin. Learn about its impact, affected versions, and mitigation methods.
cve202523844customwidget
https://www.eclipse.org/lists/iot-pmc/msg08353.html
[iot-pmc] [CQ 23844] com.fasterxml.jackson.core:jackson-annotations:2.12
iotpmccq23844