Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: spring-security Clear
ID Title
CVE-2026-47838 Authentication Bypass in org.springframework.security:spring-security-web (CVE-2026-47838)
authentication bypass in org.springframework.security:spring-security-web (CVE-2026-47838). Confidential information can be exposed externally. Exploitable via ``SubjectDnX509PrincipalExtractor``.
CVE-2026-41003 Cross-Site Scripting (XSS) in vmware (CVE-2026-41003)
cross-site scripting in vmware (CVE-2026-41003). Confidential information can be exposed externally.
CVE-2026-41008 Open Redirect in broadcom (CVE-2026-41008)
vulnerability in broadcom (CVE-2026-41008). Risk of unauthorized operations or information disclosure.
CVE-2026-41706 Open Redirect in vmware (CVE-2026-41706)
vulnerability in vmware (CVE-2026-41706). Risk of unauthorized operations or information disclosure.
CVE-2026-40988 Vulnerability in dos (CVE-2026-40988)
vulnerability in dos (CVE-2026-40988). Risk of unauthorized operations or information disclosure.
CVE-2026-40993 Unsafe Deserialization in vmware (CVE-2026-40993)
vulnerability in vmware (CVE-2026-40993). Data can be tampered with by attackers.
CVE-2026-41694 Vulnerability in vmware (CVE-2026-41694)
vulnerability in vmware (CVE-2026-41694). Risk of unauthorized operations or information disclosure.
CVE-2026-22754 Vulnerability in vmware (CVE-2026-22754)
vulnerability in vmware (CVE-2026-22754). Data can be tampered with by attackers.
CVE-2026-22747 Vulnerability in vmware (CVE-2026-22747)
vulnerability in vmware (CVE-2026-22747). Confidential information can be exposed externally.
CVE-2017-4995 Unsafe Deserialization in deserialization (CVE-2017-4995)
vulnerability in deserialization (CVE-2017-4995). Successful exploitation can lead to full system takeover.
CVE-2014-0097 Authentication Bypass in vmware (CVE-2014-0097)
authentication bypass in vmware (CVE-2014-0097). Risk of unauthorized operations or information disclosure.
CVE-2014-3527 Authentication Bypass in vmware (CVE-2014-3527)
authentication bypass in vmware (CVE-2014-3527). Successful exploitation can lead to full system takeover.
CVE-2016-5007 Vulnerability in spring (CVE-2016-5007)
vulnerability in spring (CVE-2016-5007). Data can be tampered with by attackers.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →