spring Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by spring
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Spring AI's MilvusVectorStore Vulnerable to Injection Attacks
CVE-2026-41705SpringSpring Ai8.6HIGHRemote Code Execution Vulnerability in Spring Cloud Config by Google
CVE-2026-40981SpringSpring Cloud Config7.5HIGHTOCTOU Vulnerability in Spring Cloud Config Server by VMware
CVE-2026-41002SpringSpring Cloud Config7.4HIGHDirectory Traversal Vulnerability in Spring Cloud Config by Pivotal
CVE-2026-40982SpringSpring Cloud Config9.1CRITICALSQL Injection Vulnerability in Spring AI's CosmosDBVectorStore
CVE-2026-40978SpringSpring Ai8.8HIGHSpring AI Vulnerability in Various FilterExpressionConverter Implementations
CVE-2026-40967SpringSpring Ai8.6HIGHWeb Security Flaw in Spring Boot Affects Servlet-Based Applications
CVE-2026-40976SpringSpring Boot9.1CRITICALLocal Directory Vulnerability in Spring Boot Products
CVE-2026-40973SpringSpring Boot7HIGHTiming Attack Vulnerability in Spring Boot by Pivotal Software
CVE-2026-40972SpringSpring Boot7.5HIGHAuthorization Bypass in Spring Security Affects Spring Framework
CVE-2026-22754SpringSpring Security7.5HIGHSecurity Vulnerability in Spring Security from Spring Framework
CVE-2026-22753SpringSpring Security7.5HIGHSecurity Flaw in Spring AI Redis Store Affects Tag Field Processing
CVE-2026-22744SpringSpring Ai7.5HIGHCypher Injection Vulnerability in Spring AI's Neo4j Store
CVE-2026-22743SpringSpring Ai7.5HIGHServer-Side Request Forgery Vulnerability in Spring AI's Bedrock Proxy Chat Model
CVE-2026-22742SpringSpring Ai8.6HIGHSpEL Injection Vulnerability in Spring AI Affects SimpleVectorStore
CVE-2026-22738SpringSpring AiπΎπ‘9.8CRITICALVulnerability in Spring Cloud Config Server Affects File System Security
CVE-2026-22739SpringSpring CloudEPSS 12%8.6HIGHAuthentication Bypass Vulnerability in Spring Boot Applications by Spring
CVE-2026-22733SpringSpring Security8.2HIGHAuthentication Bypass Vulnerability in Spring Boot Actuator
CVE-2026-22731SpringSpring Boot8.2HIGHProperty Modification Vulnerability in Spring Cloud Gateway Server by Spring
CVE-2025-41243SpringCloud Gateway10CRITICALAuthorization Bypass in Spring Security Aspects for Private Methods by Spring
CVE-2025-41232SpringSpring Security9.1CRITICALNull Endpoint Exposure Vulnerability in Spring Security Framework
CVE-2025-22235SpringSpring Boot7.3HIGHPassword Validation Flaw in Spring Framework Affects BCryptPasswordEncoder
CVE-2025-22228SpringSpring Security7.4HIGHCross-site Scripting Vulnerability in Spring Devs Pre Order Addon for WooCommerce
CVE-2025-26553Spring DevsPre Order Addon For Wo...7.1HIGHBypassing Authorization Rules in Spring WebFlux Applications
CVE-2024-38821SpringSpringπΎπ‘EPSS 13%π°9.1CRITICALSpring WebApplications Vulnerable to Path Traversal Attacks
CVE-2024-38816SpringSpringπΎπ‘EPSS 93%π°7.5HIGH