Spring REST Docs

CVEs (1)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-40991	Spring Projects Spring REST Docs	Med	0.38	5.9	0.00		Jun 10, 2026	When using spring-restdocs-webtestclient or spring-restdocs-restassured to document a remote API accessed over HTTP, an attacker who compromises the API or tricks the user into documenting a malicious API can perform an XXE injection attack when the documentation-generating…

CVE-2026-40991MedJun 10, 2026
Spring Projects
Spring REST Docs
risk 0.38cvss 5.9epss 0.00
When using spring-restdocs-webtestclient or spring-restdocs-restassured to document a remote API accessed over HTTP, an attacker who compromises the API or tricks the user into documenting a malicious API can perform an XXE injection attack when the documentation-generating…