Unfiltered Java Native Deserialization of SAML 2.0 Asserting Party Credentials BLOB Database Entry
CVE-2026-40993

7.3HIGH

Key Information:

Vendor: Spring
Status: Spring Security
Vendor: CVE Published:; 9 June 2026

What is CVE-2026-40993?

An attacker with write permissions to the database table managed by JdbcAssertingPartyMetadataRepository (saml2_asserting_party_metadata) may be able to store malicious serialized payloads in the columns containing the collection of verification or encryption credentials (verification_credentials and encryption_credentials, respectively).

Affected versions: Spring Security 7.0.0 through 7.0.5.

Affected Version(s)

Spring Security 7.0.0 < 7.0.6

References

https://spring.io/security/cve-2026-40993

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 9, 2026
Vulnerability Reserved
Apr 16, 2026

CVE-2026-40993 Data

JSON