|
4161
|
8.1 |
HIGH
Network
|
-
|
-
|
Spring Data MongoDB contains a SpEL (Spring Expression Language) expression injection vulnerability. The issue occurs during parameter binding when a user-defined repository query method is annotated…
|
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
|
CVE-2026-41717
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4162
|
7.5 |
HIGH
Network
|
-
|
-
|
Spring Data's internal property-lookup cache accepts and permanently retains attacker-supplied strings as cache keys, allowing heap exhaustion through repeated requests.
Affected versions:
Spring Da…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-41716
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4163
|
4.0 |
MEDIUM
Network
|
-
|
-
|
Applications that configure their broker connection via RabbitConnectionFactoryBean.setUri("amqps://...") without also calling setUseSSL(true) get TLS encryption with no certificate validation and no…
|
CWE-295
Improper Certificate Validation
|
CVE-2026-41714
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4164
|
5.9 |
MEDIUM
Network
|
-
|
-
|
Applications using Spring Data Commons may be vulnerable to a Denial of Service (DoS) attack leading to a StackOverflowException when parsing Sort parameters.
Affected versions:
Spring Data Commons …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-41711
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4165
|
6.1 |
MEDIUM
Network
|
-
|
-
|
Spring Security's CookieRequestCache and CookieServerRequestCache store the pre-authentication request URL in a browser cookie so that users can be redirected back to their intended destination after…
|
CWE-601
Open Redirect
|
CVE-2026-41706
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4166
|
4.4 |
MEDIUM
Network
|
-
|
-
|
Correlation IDs for replies in the RabbitTemplate.sendAndReceive() with the fixed reply queue are predictable due to internal simple counter.
Affected versions:
Spring AMQP 4.0.0 through 4.0.3; 3.2.…
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2026-41701
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4167
|
4.8 |
MEDIUM
Network
|
-
|
-
|
Spring Data Relational does not properly escape binding values of externally-controlled input when using StringMatcher (STARTING, ENDING, or CONTAINING) in Query By Example (QBE). An attacker can sup…
|
CWE-943
Improper Neutralization of Special Elements in Data Query Logic
|
CVE-2026-41697
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4168
|
5.9 |
MEDIUM
Network
|
-
|
-
|
Spring Data MongoDB repository query methods annotated with @Query that use regex parameter binding perform insufficient validation of the bound parameter. An attacker can supply a crafted string to …
|
CWE-943
Improper Neutralization of Special Elements in Data Query Logic
|
CVE-2026-41696
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4169
|
7.5 |
HIGH
Network
|
-
|
-
|
Spring Data Commons applications may be vulnerable to denial of service through resource exhaustion when attacker-controlled property path strings are passed to MappingContext property path resolutio…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-41695
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4170
|
6.1 |
MEDIUM
Network
|
-
|
-
|
Spring Security Authorization Server's authorization endpoint performs insufficient validation of the request_uri parameter. An attacker can craft a malicious authorization request containing an inva…
|
CWE-601
Open Redirect
|
CVE-2026-41008
|
2026-06-10 09:16 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
