spring Latest Vulnerabilities
Latest vulnerabilities published by spring
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Security Flaw in Spring Framework Affects File Access in Web Applications
CVE-2026-22737SpringSpring Framework5.9MEDIUMStream Corruption in Spring MVC and WebFlux Applications
CVE-2026-22735SpringSpring Foundation2.6LOWAuthentication Bypass Vulnerability in Spring Boot Applications by Spring
CVE-2026-22733SpringSpring Security8.2HIGHImproper Handling of HTTP Response Headers in Spring Security by Pivotal Software
CVE-2026-22732SpringSpring Security9.1CRITICALAuthentication Bypass Vulnerability in Spring Boot Actuator
CVE-2026-22731SpringSpring Boot8.2HIGHTiming Attack Vulnerability in DaoAuthenticationProvider by Spring
CVE-2025-22234SpringSpring Security5.3MEDIUMCommand Injection Vulnerability in Spring CLI VSCode Extension
CVE-2026-22718SpringCli Vscode Extension6.8MEDIUMProperty Modification Vulnerability in Spring Cloud Gateway Server by Spring
CVE-2025-41243SpringCloud Gateway10CRITICALAuthorization Bypass in Spring Security Aspects for Private Methods by Spring
CVE-2025-41232SpringSpring Security9.1CRITICALBypass Vulnerability in Spring Framework Affecting Multiple Versions
CVE-2025-22233SpringSpring Framework3.1LOWNull Endpoint Exposure Vulnerability in Spring Security Framework
CVE-2025-22235SpringSpring Boot7.3HIGHVulnerability in Spring Cloud Config Server Affects Token Management
CVE-2025-22232SpringSpring Cloud Config5.3MEDIUMAuthorization Bypass Vulnerability in Spring Security by Pivotal Software
CVE-2025-22223SpringSpring Security👾🟡5.3MEDIUMPassword Validation Flaw in Spring Framework Affects BCryptPasswordEncoder
CVE-2025-22228SpringSpring Security7.4HIGHCross-site Scripting Vulnerability in Spring Devs Pre Order Addon for WooCommerce
CVE-2025-26553Spring DevsPre Order Addon for Wo...Data Exposure Via Case Sensitive Comparisons in VMware Tanzu Spring LDAP
CVE-2024-38829SpringSpring Ldap3.7LOWAuthorization Rules May Not Work Properly Due to Locale-Dependent Exceptions in Java
CVE-2024-38827Spring By Vmware ...Spring Security4.8MEDIUMSpring MVC Controller Methods Vulnerable to DoS Attack
CVE-2024-38828SpringSpring👾🟡5.3MEDIUMBypassing Authorization Rules in Spring WebFlux Applications
CVE-2024-38821SpringSpring👾🟡EPSS 13%📰9.1CRITICALSpring WebApplications Vulnerable to Path Traversal Attacks
CVE-2024-38816SpringSpring👾🟡EPSS 93%📰7.5HIGHSpring Boot Loader Vulnerability: Signature Forgery Attack
CVE-2024-38807SpringSpring Boot6.3MEDIUMSpring Framework Denial of Service Vulnerability
CVE-2024-38808SpringSpring Framework4.3MEDIUMMissing Authorization Vulnerability in Spring Security 6.3.0 and 6.3.1
CVE-2024-38810SpringSpring Security7.5HIGHMalicious File Write Vulnerability in Spring Cloud Data Flow Skipper Prior to 2.11.4
CVE-2024-37084SpringSpring Cloud Data Flow👾🟡EPSS 83%8.8HIGHUnauthorized Access to Endpoints Through Client Certificate
CVE-2024-6834APIML Spring Clou...