VYPR

Spring Boot

by VMware

Source repositories

CVEs (10)

  • CVE-2026-22733HigMar 20, 2026
    risk 0.53cvss 8.2epss 0.00

    Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint that requires authentication is declared under the path used by the CloudFoundry Actuator endpoints. This issue affects Spring Security: from 4.0.0…

  • CVE-2026-22731HigMar 19, 2026
    risk 0.53cvss 8.2epss 0.00

    Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint that requires authentication is declared under a specific path, already configured for a Health Group additional path. This issue affects Spring…

  • CVE-2026-40976CriApr 28, 2026
    risk 0.52cvss 9.1epss 0.00

    In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to all endpoints. For an application to be vulnerable, it must: be a servlet-based web application; have no Spring Security configuration of its own and rely on the default…

  • CVE-2026-40972HigApr 28, 2026
    risk 0.49cvss 7.5epss 0.00

    An attacker on the same network as the remote application may be able to utilize a timing attack to discover information about the remote secret. In extreme circumstances this could result in the attacker determining the secret and uploading changed classes, thereby achieving…

  • CVE-2026-40973HigApr 28, 2026
    risk 0.46cvss 7.0epss 0.00

    A local attacker on the same host as the application may be able to take control of the directory used by `ApplicationTemp`. When `server.servlet.session.persistent` is set to `true` and the attack persists across application restarts, this may allow the attacker to read session…

  • CVE-2026-40974MedApr 28, 2026
    risk 0.33cvss 5.0epss 0.00

    Spring Boot's Cassandra auto-configuration does not perform hostname verification when establishing an SSL connection to Cassandra. Affected: Spring Boot 4.0.0–4.0.5 (fix 4.0.6), 3.5.0–3.5.13 (fix 3.5.14), 3.4.0–3.4.15 (fix 3.4.16), 3.3.0–3.3.18 (fix 3.3.19),…

  • CVE-2026-40971MedApr 27, 2026
    risk 0.33cvss 5.0epss 0.00

    When configured to use an SSL bundle, Spring Boot's RabbitMQ auto-configuration does not perform hostname verification when connecting to the RabbitMQ broker. Affected: Spring Boot 4.0.0–4.0.5 (fix 4.0.6), 3.5.0–3.5.13 (fix 3.5.14) per vendor advisory.

  • CVE-2026-40977MedApr 28, 2026
    risk 0.31cvss 4.7epss 0.00

    When an application is configured to use `ApplicationPidFileWriter`, a local attacker with write access to the PID file's location can corrupt one file on the host each time the application is started. Affected: Spring Boot 4.0.0–4.0.5 (fix 4.0.6), 3.5.0–3.5.13 (fix…

  • CVE-2026-40975MedApr 28, 2026
    risk 0.31cvss 4.8epss 0.00

    Values produced by ${random.value} are not suitable for use as secrets. ${random.uuid} is not affected. ${random.int} and ${random.long} should never be used for secrets as they are numeric values with a predictable range. Affected: Spring Boot 4.0.0–4.0.5 (fix 4.0.6),…

  • CVE-2026-40970MedApr 27, 2026
    risk 0.26cvss 5.0epss 0.00

    When configured to use an SSL bundle, Spring Boot's Elasticsearch auto-configuration does not perform hostname verification when connecting to the Elasticsearch server. Affected: Spring Boot 4.0.0–4.0.5; upgrade to 4.0.6 or later per vendor advisory.