Where
-Infinity
0

Trending

Last week
Last month
Last year

VMware Spring BootAn attacker on the same network as the remote application may be able to utilize a timing attack to …

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2463332

VMware Spring BootA local attacker on the same host as the application may be able to take control of the directory us…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2463330

VMware Spring BootWhen an application is configured to use `ApplicationPidFileWriter`, a local attacker with write acc…

Risk 60
Severity
6.7
First published (updated )
CVE-2026-40977

VMware Spring BootIn certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized ac…

Risk 66
Severity
9.1
First published (updated )
CVE-2026-40976

VMware Spring BootValues produced by ${random.value} are not suitable for use as secrets. ${random.uuid} is not affect…

Risk 43
Severity
7.5
First published (updated )
CVE-2026-40975
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware Spring BootSpring Boot's Cassandra auto-configuration does not perform hostname verification when establishing …

Risk 86
Severity
9.8
First published (updated )
CVE-2026-40974

VMware Spring BootA local attacker on the same host as the application may be able to take control of the directory us…

Risk 63
Severity
7
First published (updated )
CVE-2026-40973

VMware Spring BootAn attacker on the same network as the remote application may be able to utilize a timing attack to …

Risk 70
Severity
7.5
First published (updated )
CVE-2026-40972

VMware Spring BootWhen configured to use an SSL bundle, Spring Boot's RabbitMQ auto-configuration does not perform hos…

Risk 66
Severity
9.1
First published (updated )
CVE-2026-40971

VMware Spring BootWhen configured to use an SSL bundle, Spring Boot's Elasticsearch auto-configuration does not perfor…

Risk 52
Severity
6.8
First published (updated )
CVE-2026-40970
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

VMware Spring BootAuthentication Bypass under Actuator Health groups paths

Risk 54
Severity
8.2
First published (updated )
CVE-2026-22731

IBM Operational Decision ManagerSpring Boot server Web Observations DoS Vulnerability

Risk 40
Severity
6.5
First published (updated )
CVE-2023-34055

redhat/spring-bootIn Spring Boot versions 3.0.0 - 3.0.5, 2.7.0 - 2.7.10, and older unsupported versions, an applicatio…

Risk 90
Severity
9.8
First published (updated )
CVE-2023-20873

VMware Spring BootSpring Boot supports an embedded launch script that can be used to easily run the application as a s…

Risk 35
Severity
5.9
First published (updated )
CVE-2018-1196

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203