spring Spring Framework Vulnerabilities
Spring Spring Framework vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Spring Framework Unsafe Deserialization via Jackson JMS Converters
CVE-2026-41855SpringSpring Framework8.1HIGHSpring Framework Server-Side Request Forgery via UriComponentsBuilder
CVE-2026-41854SpringSpring Framework4.2MEDIUMSpring Framework Multipart Request Smuggling in Spring MVC and WebFlux
CVE-2026-41853SpringSpring Framework5.3MEDIUMSpring Framework Arbitrary Method Invocation in SpEL Expressions
CVE-2026-41852SpringSpring Framework3.7LOWSpring Framework Denial of Service via Unbounded Cache in SpEL
CVE-2026-41851SpringSpring Framework5.3MEDIUMSpring Framework Algorithmic Denial of Service via SpEL Expressions
CVE-2026-41850SpringSpring Framework7.5HIGHSpring Framework Denial of Service via Integer Overflow in SpEL Expressions
CVE-2026-41849SpringSpring Framework7.5HIGHSpring Framework Denial of Service via AntPathMatcher
CVE-2026-41848SpringSpring Framework3.7LOWSpring Framework Security Filter Bypass in WebFlux Kotlin Router DSL
CVE-2026-41847SpringSpring Framework4.8MEDIUMSpring Framework Cross-site Scripting via JSP Form Tags
CVE-2026-41846SpringSpring Framework5.9MEDIUMSpring Framework Cross-site Scripting via JavaScriptUtils
CVE-2026-41845SpringSpring Framework7.1HIGHSpring Framework Open Redirect in Spring MVC and WebFlux
CVE-2026-41844SpringSpring Framework4.2MEDIUMSpring Framework Path Traversal via Versioned Static Resources in Spring MVC and WebFlux
CVE-2026-41843SpringSpring Framework5.9MEDIUMSpring Framework Denial of Service via Versioned Resources in Spring MVC and WebFlux
CVE-2026-41842SpringSpring Framework7.5HIGHSpring Framework Information Disclosure via Static Resource Cache in Spring MVC and WebFlux
CVE-2026-41841SpringSpring Framework5.9MEDIUMSpring Framework Denial of Service via Multipart Requests in WebFlux
CVE-2026-41840SpringSpring Framework5.9MEDIUMSpring Framework Escalation via Session Fixation in WebFlux
CVE-2026-41839SpringSpring Framework4.2MEDIUMSpring Framework Predictable Session ID in WebSocket Module
CVE-2026-41838SpringSpring Framework4.8MEDIUMSecurity Flaw in Spring Framework Affects File Access in Web Applications
CVE-2026-22737SpringSpring Framework5.9MEDIUMBypass Vulnerability in Spring Framework Affecting Multiple Versions
CVE-2025-22233SpringSpring Framework3.1LOWSpring Framework Denial of Service Vulnerability
CVE-2024-38808SpringSpring Framework4.3MEDIUMSpring Cloud Function Web DOS Vulnerability
CVE-2024-22271Spring By Vmware ...Spring Cloud Function ...8.2HIGHSpring UriComponentsBuilder Vulnerability: Open Redirect and SSRF Risks
CVE-2024-22262SpringSpring FrameworkEPSS 12%8.1HIGHSpring Framework UriComponentsBuilder Vulnerability
CVE-2024-22259SpringSpring FrameworkEPSS 56%π°8.1HIGHPotential Open Redirect Vulnerability in UriComponentsBuilder
CVE-2024-22243SpringSpring FrameworkπΎπ‘EPSS 60%8.1HIGH