CVE-2026-40977

< 2.7.33

When an application is configured to use ApplicationPidFileWriter, a local attacker with write access to the PID file's location

4.7MEDIUM

CVE-2026-40976

>= 4.0.0 and < 4.0.6

In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to all endpoints. For an

9.1CRITICAL

CVE-2026-40975

< 2.7.33

Values produced by ${random.value} are not suitable for use as secrets. ${random.uuid} is not affected. ${random.int} and ${random

4.8MEDIUM

CVE-2026-40974

>= 2.7.0 and < 2.7.33

Spring Boot's Cassandra auto-configuration does not perform hostname verification when establishing an SSL connection to Cassandra

5.0MEDIUM

CVE-2026-40973

< 2.7.33

A local attacker on the same host as the application may be able to take control of the directory used by ApplicationTemp. When

7.0HIGH

CVE-2026-40972

< 2.7.33

An attacker on the same network as the remote application may be able to utilize a timing attack to discover information about the

7.5HIGH

CVE-2026-40971

>= 3.5.0 and < 3.5.14

When configured to use an SSL bundle, Spring Boot's RabbitMQ auto-configuration does not perform hostname verification when connec

5.0MEDIUM

CVE-2026-40970

>= 4.0.0 and < 4.0.6

When configured to use an SSL bundle, Spring Boot's Elasticsearch auto-configuration does not perform hostname verification when c

5.0MEDIUM

CVE-2026-22733

< 2.7.32

Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint

8.2HIGH

CVE-2026-22731

>= 3.4.0 and < 3.4.15

Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint

8.2HIGH

CVE-2023-34055

>= 2.7.0 and <= 2.7.17

In Spring Boot versions 2.7.0 - 2.7.17, 3.0.0-3.0.12 and 3.1.0-3.1.5, it is possible for a user to provide specially crafted HTTP

5.3MEDIUM

CVE-2023-20883

< 2.5.14

In Spring Boot versions 3.0.0 - 3.0.6, 2.7.0 - 2.7.11, 2.6.0 - 2.6.14, 2.5.0 - 2.5.14 and older unsupported versions, there is pot

7.5HIGH

CVE-2023-20873

< 2.5.15

In Spring Boot versions 3.0.0 - 3.0.5, 2.7.0 - 2.7.10, and older unsupported versions, an application that is deployed to Cloud Fo

9.8CRITICAL

CVE-2023-22602

all versions

When using Apache Shiro before 1.11.0 together with Spring Boot 2.6+, a specially crafted HTTP request may cause an authentication

7.5HIGH

CVE-2022-27772

< 2.2.11

spring-boot versions prior to version v2.2.11.RELEASE was vulnerable to temporary directory hijacking. This vulnerability impacted

7.8HIGH

CVE-2021-26987

< 1.3.2

Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions prior to 1.3.2 are susceptible

9.8CRITICAL

CVE-2018-1196

<= 1.5.9

Spring Boot supports an embedded launch script that can be used to easily run the application as a systemd or init.d linux service

5.9MEDIUM

CVE-2017-8046

< 1.5.9

Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), versions prior to 3.0.

9.8CRITICAL